• Connection.BulkDelete()

  deletes named objects at once using bulk delete API.

• BulkDeleteResult

  stores results of BulkDelete operation.

The referenced specification is Rackspace Cloud Files API: http://docs.rackspace.com/files/api/v1/cf-devguide/content/Bulk_Delete-d1e2338.html

Tested on Rackspace.

See #8 for discussions.

As requested I opened an issue because the Go tests fail on my OpenStack Mitaka backend with v2.0 authentication.

https://github.com/restic/restic/issues/1039#issuecomment-309209227

~/src/github.com/ncw/swift$ source openrc.sh
~/src/github.com/ncw/swift$ export SWIFT_TENANT_ID=$OS_TENANT_ID
~/src/github.com/ncw/swift$ export SWIFT_API_KEY=$OS_PASSWORD
~/src/github.com/ncw/swift$ export SWIFT_AUTH_URL=$OS_AUTH_URL
~/src/github.com/ncw/swift$ export SWIFT_TENANT=$OS_TENANT
~/src/github.com/ncw/swift$ export SWIFT_API_USER=$OS_USERNAME
~/src/github.com/ncw/swift$ go version
go version go1.8.3 linux/amd64
~/src/github.com/ncw/swift$ go test
Waiting for server to start . Started
--- FAIL: TestAuthenticateRace (1.10s)
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
	swift_test.go:456: Auth failed Response didn't have storage url and auth token
--- FAIL: TestSerializeConnectionJson (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestSerializeConnectionXml (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestOnReAuth (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestAccount (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestAccountUpdate (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainerCreate (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainer (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainersAll (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainersAllWithLimit (0.09s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainerUpdate (0.09s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainerNames (0.09s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainerNamesAll (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestContainerNamesAllWithLimit (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectPutString (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectPut (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectEmpty (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectPutBytes (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectPutMimeType (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectCreate (0.13s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectGetString (0.09s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectGetBytes (0.10s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
--- FAIL: TestObjectOpen (0.11s)
	swift_test.go:134: Auth failed Response didn't have storage url and auth token
^Csignal: interrupt
FAIL	github.com/ncw/swift	4.409s

Having both authentication methods in one request causes a bad request response from Rackspace. After debugging with support, the tech instructed that the RAX-KSKEY method is the correct one and only one to use.

When running a 30 minutes testsuite (https://github.com/lebauce/distribution), I faced a weird issue : I sometimes got a url.Error : "Head https://my.swift.server/v1/AUTH_abcdb3abcda34a1c8d618164d99eb53e/test/myobject : EOF". I'm using the 1.4.2 version of Go.

The issue seems to be in the net/http library and is described in both tickets : https://github.com/golang/go/issues/4677 https://github.com/golang/go/issues/8946

A fix on net/http is under review : https://golang.org/cl/3210

A fix for this problem is simply to send the request again when the request was a HEAD or a GET

Hi, I've noticed that when I have a wrong timezone on the client (e.g. when booted with live CD in a VM) I get this error

"Response didn't have storage url and auth token"

from https://github.com/ncw/swift/blob/v1/swift.go#L535, but that's not what actually happens there, I checked and compared the responses and if I correct the time everything works just fine, so at the very least the error message isn't accurate if that's intended behavior. Is it though? Is there a requirement that time is synced between client and server? Seems strange. Seems to me that the token or something gets expired right after it gets assigned an expiration date in the same function call.

Some Swift API implementations (I've observed this with Ceph RADOSGW) can return fewer results than specified by the "limit" parameter, even when we have not reached the end of the listing.

It's unclear to me from reading the API docs whether this is a violation of the API specification, but since it happens in the wild, it's best to be able to handle it.

One way of doing this is to simply keep fetching pages until we receive an empty page. Another is to assume that pages within a certain percentage of limit are not the last page. Given the tradeoffs involved, let's support both.

For restic, we'll switch to dep shortly, and it would be very helpful if you could tag a release. Thanks!

https://dave.cheney.net/2016/06/24/gophers-please-tag-your-releases

This should hopefully fix #71. It uses Expect: 100-continue. The trick to get it working properly was to set TransferEncoding: []string{"chunked"} on the request object.

I've hacked your source to do CDN enabling/disabling of containers.

Two relatively big changes were:

• Changed storageOpts to the more generic requestOpts name.
• Added a "manage" method similar to "storage", but they now wrap a new "call" method so the correct storage/management URL gets called.

There are also tests in place which pass.

Please get back to me if there is anything I need to change.

I am currently working on a product in which multiple goroutines are sharing the same swift client, and we need to be able to correlate the requests the client is making with the specific goroutine which initiated the action. To do this we pass down the request ID and make it accessible to a custom http.Transport for logging. We do this successfully with other storage clients. However, with this Swift client we've had to do some hacking. We append request ID to the Connection.UserAgent field, then extracting in our overriden http.Transport.RoundTrip method before dispatching the request.

This seemed to us was a generic enough use-case to open an issue. We suggest Google's approach of adding a context parameter to each API function call, https://godoc.org/cloud.google.com/go/storage I understand this would mean updating the API functions to accept a context AND attach the context to the requests the client makes to allow a custom Transport to inspect the request's context. Not only would it support our use case, but make it far easier for your users to process custom data in their net/http interface implementations.

According to http://developer.openstack.org/api-ref-identity-v2.html#authenticate-v2.0 the endpoints response parameter is defined as:

One or more endpoints objects. Each object shows the adminURL, region, internalURL, id, and publicURL for the endpoint.

Reading the adminURL field and the ability to use it as an endpoint, was missing from this library.

This PR changes the signature of Authenticator.StorageUrl to receive an EndpointType instead of a boolean. Also, I've added an EndpointType field to the Connection struct to allow users to specify a custom endpoint type.

I tried to keep everything compatible so the Internal boolean field remains in the Connection struct, if the EndpointType is not set and the Internal flag is set, the chosen endpoint type will be the internal url otherwise the public url is used.

Hi team,

I'd like to add headers support for HEAD requests that might help in some case like X-Newest: true (https://github.com/ncw/swift/issues/100) or some custom headers.

Thanks!

We are working with a Swift backend server that returns last_modified formatted as 2022-08-18T04:02:34Z instead of 2022-08-18T04:02:34 . Because of that, the Objects() call returns the following error:

parsing time "2022-08-18T04:02:34Z": extra text: "Z"

As per the OpenStack Storage API reference,

The date and time stamp format is ISO 8601:

2022-08-18T04:02:34Z appears to be a valid ISO 8601 format according to wikipedia.

~~The easiest way to support it is probably to make time format a setting that can be changed by the user. This PR does that.~~

This removes the Z suffix from object.ServerLastModified before using it.

Please review.

Thanks!

v3oidcaccesstoken requires two authentication requests:

1. Retrieving an unscoped token using an oidc access token
2. Retrieving a scoped token using the unscoped token (already implemented in v3auth)

Change summary:

• Extracted method for auth request handling
• Added missing fields to Connection, e.g. IdentityProvider
  • Added mappings to the relevant openstack environment variables
• Added interface TwoStageAuthenticator
• Implemented PrelimRequest and PrelimResponse for v3auth

Sadly I saw no reasonable way to test these changes, but I'm completely open to suggestions. This includes the way I extended the authentication handling, which may or may not be optimal.

These changes are a follow up to this forum thread: https://forum.rclone.org/t/swift-env-auth-true-env-os-access-token-http-error-404-404-not-found/22520

When receiving errors for creating/updating objects/containers the headers are thrown away, this makes it impossible to respect retry-after headers which can be present in e.g. http 503 Service Unavailable or 429 Too many requests. (Unless Ḯm missing something obvious?) A possible non breaking solution would be to add an optional field "Headers" to swift.Error and append headers to this error. Another solution which would be breaking could be to simply return both error and headers from ObjectUpdate etc.

The Authentication method says:

If you don't call it before calling one of the connection methods then it will be called for you on the first access.

And the Call method says

This will Authenticate if necessary, and re-authenticate if it receives a 401 error which means the token has expired

But if user create the connection object and use Call method directly, program will receive SIGSEGV, because the conn.authLock member is not initialized yet. Other method like ObjectPut ObjectDelete also suffer from this problem.

Although the sample code do call Authenticate after connection object construction. I thought the document may be a little misleading. :D

When creating a slo, no headers are written to the segment objects: headers, err := file.conn.ObjectPut(file.segmentContainer, segmentName, segmentReader, true, "", file.contentType, nil) https://github.com/ncw/swift/blob/master/largeobjects.go#L403

In my case I want to pass a X-Delete-At parameter also to the segments that are created. Otherwise they will be orphaned once the actual file is expired and deleted.

Can we pass in the headers from the file itself? headers, err := file.conn.ObjectPut(file.segmentContainer, segmentName, segmentReader, true, "", file.contentType, file.headers)

thanks!