[#44] Add params to disable tls check on s3
Signed-off-by: Denis Kirillov <denis@nspcc.ru> (cherry picked from commit cb21178ae7e1ba6e956b3b3ea0a845fe6b0ca48a)
This commit is contained in:
parent
966fee0e55
commit
bec9dde27a
3 changed files with 38 additions and 2 deletions
|
@ -79,6 +79,15 @@ import s3 from 'k6/x/neofs/s3';
|
||||||
const s3_cli = s3.connect("http://s3.neofs.devenv:8080")
|
const s3_cli = s3.connect("http://s3.neofs.devenv:8080")
|
||||||
```
|
```
|
||||||
|
|
||||||
|
You can also provide additional options:
|
||||||
|
```js
|
||||||
|
import s3 from 'k6/x/neofs/s3';
|
||||||
|
const s3_cli = s3.connect("http://s3.neofs.devenv:8080", {'no_verify_ssl': 'true', 'timeout': '60s'})
|
||||||
|
```
|
||||||
|
|
||||||
|
* `no_verify_ss` - Bool. If `true` - skip verifying the s3 certificate chain and host name (useful if s3 uses self-signed certificates)
|
||||||
|
* `timeout` - Duration. Set timeout for requests (in http client). If omitted or zero - timeout is infinite.
|
||||||
|
|
||||||
### Methods
|
### Methods
|
||||||
- `createBucket(bucket, params)`. Returns dictionary with `success` boolean flag
|
- `createBucket(bucket, params)`. Returns dictionary with `success` boolean flag
|
||||||
and `error` string. The `params` is a dictionary (e.g. `{acl:'private',lock_enabled:'true',location_constraint:'ru'}`)
|
and `error` string. The `params` is a dictionary (e.g. `{acl:'private',lock_enabled:'true',location_constraint:'ru'}`)
|
||||||
|
|
|
@ -4,7 +4,7 @@ import s3 from 'k6/x/neofs/s3';
|
||||||
|
|
||||||
const payload = open('../go.sum', 'b');
|
const payload = open('../go.sum', 'b');
|
||||||
const bucket = "cats"
|
const bucket = "cats"
|
||||||
const s3_cli = s3.connect("http://s3.neofs.devenv:8080")
|
const s3_cli = s3.connect("https://s3.neofs.devenv:8080", {'no_verify_ssl': 'true'})
|
||||||
|
|
||||||
export const options = {
|
export const options = {
|
||||||
stages: [
|
stages: [
|
||||||
|
|
|
@ -1,7 +1,11 @@
|
||||||
package s3
|
package s3
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
"crypto/tls"
|
||||||
"fmt"
|
"fmt"
|
||||||
|
"net/http"
|
||||||
|
"strconv"
|
||||||
|
"time"
|
||||||
|
|
||||||
"github.com/aws/aws-sdk-go-v2/aws"
|
"github.com/aws/aws-sdk-go-v2/aws"
|
||||||
"github.com/aws/aws-sdk-go-v2/config"
|
"github.com/aws/aws-sdk-go-v2/config"
|
||||||
|
@ -47,7 +51,7 @@ func (s *S3) Exports() modules.Exports {
|
||||||
return modules.Exports{Default: s}
|
return modules.Exports{Default: s}
|
||||||
}
|
}
|
||||||
|
|
||||||
func (s *S3) Connect(endpoint string) (*Client, error) {
|
func (s *S3) Connect(endpoint string, params map[string]string) (*Client, error) {
|
||||||
resolver := aws.EndpointResolverWithOptionsFunc(func(_, _ string, _ ...interface{}) (aws.Endpoint, error) {
|
resolver := aws.EndpointResolverWithOptionsFunc(func(_, _ string, _ ...interface{}) (aws.Endpoint, error) {
|
||||||
return aws.Endpoint{
|
return aws.Endpoint{
|
||||||
URL: endpoint,
|
URL: endpoint,
|
||||||
|
@ -59,11 +63,34 @@ func (s *S3) Connect(endpoint string) (*Client, error) {
|
||||||
return nil, fmt.Errorf("configuration error: %w", err)
|
return nil, fmt.Errorf("configuration error: %w", err)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
var noVerifySSL bool
|
||||||
|
if noVerifySSLStr, ok := params["no_verify_ssl"]; ok {
|
||||||
|
if noVerifySSL, err = strconv.ParseBool(noVerifySSLStr); err != nil {
|
||||||
|
return nil, fmt.Errorf("invalid value for 'no_verify_ssl': '%s'", noVerifySSLStr)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
var timeout time.Duration
|
||||||
|
if timeoutStr, ok := params["timeout"]; ok {
|
||||||
|
if timeout, err = time.ParseDuration(timeoutStr); err != nil {
|
||||||
|
return nil, fmt.Errorf("invalid value for 'timeout': '%s'", timeoutStr)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
cli := s3.NewFromConfig(cfg, func(options *s3.Options) {
|
cli := s3.NewFromConfig(cfg, func(options *s3.Options) {
|
||||||
// use 'domain/bucket/key' instead of default 'bucket.domain/key' scheme
|
// use 'domain/bucket/key' instead of default 'bucket.domain/key' scheme
|
||||||
options.UsePathStyle = true
|
options.UsePathStyle = true
|
||||||
// do not retry failed requests, by default client does up to 3 retry
|
// do not retry failed requests, by default client does up to 3 retry
|
||||||
options.Retryer = aws.NopRetryer{}
|
options.Retryer = aws.NopRetryer{}
|
||||||
|
// s3 sometimes use self-signed certs
|
||||||
|
options.HTTPClient = &http.Client{
|
||||||
|
Transport: &http.Transport{
|
||||||
|
TLSClientConfig: &tls.Config{
|
||||||
|
InsecureSkipVerify: noVerifySSL,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
Timeout: timeout,
|
||||||
|
}
|
||||||
})
|
})
|
||||||
|
|
||||||
// register metrics
|
// register metrics
|
||||||
|
|
Loading…
Reference in a new issue