feat(core): support p0 capabilities

Author: bytestarter

volcenginesdkcore/api_client.py

@@ -0,0 +1,2 @@
+from .credential import Credential
+from .providers import *

volcenginesdkcore/auth/__init__.py

@@ -0,0 +1,12 @@
+# coding=utf-8
+class Credential(object):
+    """凭证管理类"""
+
+    def __init__(self, provider):
+        self.provider = provider
+
+    def get(self):
+        if self.provider.is_expired():
+            # 当凭证过期时自动刷新
+            self.provider.refresh()
+        return self.provider.retrieve()

volcenginesdkcore/auth/credential.py

@@ -0,0 +1,2 @@
+from .static_provider import StaticCredentialProvider
+from .sts_provider import StsCredentialProvider

volcenginesdkcore/auth/providers/__init__.py

@@ -0,0 +1,28 @@
+# coding=utf-8
+import abc
+
+
+class CredentialValue:
+    def __init__(self, ak, sk, session_token=None, provider_name=None):
+        self.ak = ak
+        self.sk = sk
+        self.session_token = session_token
+        self.provider_name = provider_name
+
+
+class Provider(object):
+
+    @abc.abstractmethod
+    def retrieve(self):
+        """获取凭证"""
+        raise NotImplementedError()
+
+    @abc.abstractmethod
+    def is_expired(self):
+        """判断凭证是否过期"""
+        raise NotImplementedError()
+
+    @abc.abstractmethod
+    def refresh(self):
+        """刷新凭证"""
+        raise NotImplementedError()

volcenginesdkcore/auth/providers/provider.py

@@ -0,0 +1,26 @@
+# coding=utf-8
+from volcenginesdkcore.auth.providers.provider import Provider, CredentialValue
+
+
+class StaticCredentialProvider(Provider):
+    """静态凭证提供者"""
+
+    def _refresh(self):
+        return
+
+    def __init__(self, access_key_id, secret_access_key, session_token=None):
+        self.credentials = CredentialValue(
+            access_key_id,
+            secret_access_key,
+            session_token,
+            "StaticCredentialProvider"
+        )
+
+    def retrieve(self):
+        return self.credentials
+
+    def is_expired(self):
+        return False
+
+    def refresh(self):
+        return

volcenginesdkcore/auth/providers/static_provider.py

@@ -0,0 +1,78 @@
+import time
+import uuid
+from datetime import datetime
+
+import dateutil.parser
+from urllib3 import Timeout
+
+from volcenginesdkcore import UniversalApi, UniversalInfo, ApiClient, Configuration
+from volcenginesdkcore.auth.providers.provider import Provider, CredentialValue
+
+
+class AssumeRoleCredentials:
+    def __init__(self, ak, sk, session_token, current_time, expired_time):
+        self.ak = ak
+        self.sk = sk
+        self.session_token = session_token
+        self.current_time = current_time
+        self.expired_time = expired_time
+
+
+class StsCredentialProvider(Provider):
+    def __init__(self, ak, sk, role_name, account_id, duration_seconds=3600, scheme='https',
+                 host='sts.volcengineapi.com', region='cn-north-1', timeout=30):
+        self.ak = ak
+        self.sk = sk
+        self.role_name = role_name
+        self.account_id = account_id
+
+        self.timeout = timeout
+        self.duration_seconds = duration_seconds
+
+        self.host = host
+        self.region = region
+        self.scheme = scheme
+
+        self.expired_time = None
+
+        self.credentials = None
+
+    def retrieve(self):
+        return self.credentials
+
+    def is_expired(self):
+        return self.credentials is None or (self.expired_time and self.expired_time < time.time())
+
+    def refresh(self):
+        self._assume_role()
+
+    def _assume_role(self):
+        params = {
+            'DurationSeconds': self.duration_seconds,
+            'RoleSessionName': uuid.uuid4().hex,
+            'RoleTrn': 'trn:iam::' + self.account_id + ':role/' + self.role_name,
+        }
+        configuration = Configuration()
+        configuration.ak = self.ak
+        configuration.sk = self.sk
+        configuration.host = self.host
+        configuration.region = self.region
+        configuration.schema = self.scheme
+        configuration.timeout = Timeout(self.timeout)
+        c = UniversalApi(ApiClient(configuration))
+        info = UniversalInfo(method='GET', service='sts', version='2018-01-01', action='AssumeRole',
+                             content_type='text/plain')
+
+        resp, status_code, resp_header = c.do_call_with_http_info(info=info, body=params)
+        resp_cred = resp['Credentials']
+
+        # Parse the ISO string
+        dt = dateutil.parser.parse(resp_cred['ExpiredTime'])
+
+        # Convert to timestamp (seconds since epoch)
+        self.expired_time = (dt - datetime(1970, 1, 1, tzinfo=dateutil.tz.tzutc())).total_seconds()
+
+        self.credentials = CredentialValue(ak=resp_cred['AccessKeyId'],
+                                           sk=resp_cred['SecretAccessKey'],
+                                           session_token=resp_cred['SessionToken'],
+                                           provider_name='StsCredentialProvider')

volcenginesdkcore/auth/providers/sts_provider.py

@@ -9,6 +9,9 @@
 
 import six
 from six.moves import http_client as httplib
+from urllib3 import Timeout, Retry
+
+from volcenginesdkcore.endpoint.providers import DefaultEndpointProvider
 
 
 class TypeWithDefault(type):
@@ -36,7 +39,7 @@ def __init__(self):
         """Constructor"""
 
         # Default Base url
-        self.host = "open.volcengineapi.com"
+        self.host = None
         # Schema Support http or https
         self.schema = "http"
         # Temp file folder for downloading files
@@ -53,6 +56,7 @@ def __init__(self):
         # 自定义适配
         self.ak = ""
         self.sk = ""
+        self.session_token = ""
         self.region = ""
 
         # Logging Settings
@@ -83,6 +87,10 @@ def __init__(self):
         # Set this to True/False to enable/disable SSL hostname verification.
         self.assert_hostname = None
 
+        self.num_pools = 4
+        self.timeout = Timeout(connect=3.0, read=30.0, total=30.0)
+        self.retries = Retry(3)
+
         # urllib3 connection pool's maximum number of connections saved
         # per pool. urllib3 uses 1 connection as default value, but this is
         # not the best value when you are making a lot of possibly parallel
@@ -98,6 +106,8 @@ def __init__(self):
         # Disable client side validation
         self.client_side_validation = True
 
+        self.endpoint_provider = DefaultEndpointProvider()
+
     @property
     def logger_file(self):
         """The logger file.

volcenginesdkcore/configuration.py

@@ -0,0 +1,2 @@
+from .endpoint_provider import *
+from .providers import *

volcenginesdkcore/endpoint/__init__.py

@@ -0,0 +1,22 @@
+# coding=utf-8
+
+import abc
+
+
+class ResolvedEndpoint:
+    def __init__(self, host, scheme="https"):
+        self.host = host
+        self.scheme = scheme
+
+    @property
+    def full_url(self):
+        return self.scheme + '://' + self.host
+
+
+class EndpointProvider(object):
+    """接口类：确定服务请求的终端节点"""
+
+    @abc.abstractmethod
+    def endpoint_for(self, service, region):
+        """返回指定服务和区域的终端节点"""
+        raise NotImplementedError()