Home Explore Help
Register Sign In
locky
/
ASJServer
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e1231389a1
Branches Tags
ASJServer
/
Ansjer
/
test
/
s3sts.py

s3sts.py 4.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. #!/usr/bin/env python3  
    2. 

  2. # -*- coding: utf-8 -*-  
    3. 

  3. """
    4. 

  4. @Copyright (C) ansjer cop Video Technology Co.,Ltd.All rights reserved.
    5. 

  5. @AUTHOR: ASJRD018
    6. 

  6. @NAME: AnsjerFormal
    7. 

  7. @software: PyCharm
    8. 

  8. @DATE: 2018/11/8 17:30
    9. 

  9. @Version: python3.6
    10. 

  10. @MODIFY DECORD:ansjer dev
    11. 

  11. @file: s3sts.py
    12. 

  12. @Contact: chanjunkai@163.com
    13. 

  13. """
    14. 

  14. 

  15. def getCredentials():
    16. 

  16.     import boto3
    17. 

  17.     REGION_NAME = 'us-east-1'  # e.g
    18. 

  18.     import json
    19. 

  19. 

  20.     sts = boto3.client(
    21. 

  21.         'sts',
    22. 

  22.         aws_access_key_id='AKIAIXAA4C3QCK7ZNUOA',
    23. 

  23.         aws_secret_access_key='7h1cV8wSkJpvMELjS/3Zutp1t3/LAxJYY60oZ5gH',
    24. 

  24.         region_name=REGION_NAME
    25. 

  25.     )
    26. 

  26. 

  27.     Policy = {"Version": "2012-10-17",
    28. 

  28.               "Statement": [{"Effect": "Allow", "Action": "s3:*", "Resource": ["arn:aws:s3:::ansjerfilemanager/*"]}]}
    29. 

  29.     credentials = sts.get_federation_token(
    30. 

  30.         Name='chanjunkai@163.com',  # or any unique text related to user
    31. 

  31.         Policy=json.dumps(Policy),
    32. 

  32.         DurationSeconds=3600,
    33. 

  33.         # minimum is 200 which is enough as token is just for start of request and necessarily need not live throughout the life of the whole upload.
    34. 

  34.     )
    35. 

  35. 

  36.     print(credentials)
    37. 

  37.     access_key_id = credentials['Credentials']['AccessKeyId']
    38. 

  38.     session_token = credentials['Credentials']['SessionToken']
    39. 

  39.     secret_access_key = credentials['Credentials']['SecretAccessKey']
    40. 

  40. 

  41. # getCredentials()
    42. 

  42. #
    43. 

  43. # exit()
    44. 

  44. def getCredentialsTemplate():
    45. 

  45.     import boto3
    46. 

  46.     REGION_NAME = 'us-east-1'  # e.g
    47. 

  47. 

  48.     sts = boto3.client(
    49. 

  49.         'sts',
    50. 

  50.         aws_access_key_id='AKIAIXAA4C3QCK7ZNUOA',
    51. 

  51.         aws_secret_access_key='7h1cV8wSkJpvMELjS/3Zutp1t3/LAxJYY60oZ5gH',
    52. 

  52.         region_name=REGION_NAME
    53. 

  53.     )
    54. 

  54. 

  55.     Policy = {"Version": "2012-10-17", "Statement": [
    56. 

  56.         {"Effect": "Allow", "Action": "s3:*", "Resource": ["arn:aws:s3:::<your-bucket>/<key-folder>/*"]}]}
    57. 

  57.     credentials = sts.get_federation_token(
    58. 

  58.         Name='12132@qq.com',  # or any unique text related to user
    59. 

  59.         Policy={},
    60. 

  60.         DurationSeconds=3600,
    61. 

  61.         # minimum is 200 which is enough as token is just for start of request and necessarily need not live throughout the life of the whole upload.
    62. 

  62.     )
    63. 

  63.     access_key_id = credentials['Credentials']['AccessKeyId']
    64. 

  64.     session_token = credentials['Credentials']['SessionToken']
    65. 

  65.     secret_access_key = credentials['Credentials']['SecretAccessKey']
    66. 

  66. 

  67. def test():
    68. 

  68.     import boto3
    69. 

  69.     REGION_NAME = 'us-east-1'  # e.g
    70. 

  70.     import json
    71. 

  71.     # crd = {'Credentials': {'AccessKeyId': 'ASIA2E67UIMDZEZW7F56', 'SecretAccessKey': '2XE3bxqUlt7RTwojtsOxAQdp25dXlPSOGJr4PJ9l', 'SessionToken': 'FQoGZXIvYXdzEHIaDNE8Ddu2SeUjFQB3ICL7AVZuoryvjuDgFFkNuB81R2tO+jo5xbH3mecUN9SygDRWccfGqUkZZli8h9oF9nxht3LzawpTzR8Xsk3Zcq7hXZ4n69nNjCzO5iRAqNU5OSA5QdS70xcJyGBvMz5QX+QL6T8nTUf0qImvgTgzHl1U7dhPDkpR2TTpuFkoCxPjPDDmljA45TzOzDPkZ9P48njKF0ijJsWKUIJSOOXpixn7QZHE0+WzCrl4OQdr4gyYBDufYQl4Hc/jhG1W40FE9KARRClOFQk01gc8RZR07K26+bDUfLdhT4uBpwZ64xR64VQX0OKVu0e9hjPFEePDheSIwdzS7htJomuF5Vq7KIGuk98F', 'Expiration': datetime.datetime(2018, 11, 9, 1, 38, 25, tzinfo=tzutc())}, 'FederatedUser': {'FederatedUserId': '697864307463:chanjunkai@163.com', 'Arn': 'arn:aws:sts::697864307463:federated-user/chanjunkai@163.com'}, 'PackedPolicySize': 11, 'ResponseMetadata': {'RequestId': 'c4e67d2b-e3b7-11e8-b1b0-bfa03e244fac', 'HTTPStatusCode': 200, 'HTTPHeaders': {'x-amzn-requestid': 'c4e67d2b-e3b7-11e8-b1b0-bfa03e244fac', 'content-type': 'text/xml', 'content-length': '1151', 'date': 'Fri, 09 Nov 2018 00:38:24 GMT'}, 'RetryAttempts': 0}}
    72. 

  72.     crd = {'AccessKeyId': 'ASIA2E67UIMD4N3CQ3E4', 'SecretAccessKey': 'Q2eTydFr1OspXzWwugRivNMK34P7FpoSFR1zj4y5', 'SessionToken': 'FQoGZXIvYXdzEHMaDA3GVRjbxTC144XcCyL7AVB+z7Hl3NsQAHDa6zqB20hQdM4WaB8PPaqW9nikJWmUxc0sW1MNFGCW5haixnQK7mKv6dnal+faA2d+aF/BS7zNmALwzGvx9l+QweJQ/PDmEBYfq7MhjcQfQspKDrongeSKQYwRQ6hBVtfdZi/A71yJjBl50zFdvzBkR8xHImgtEFoIzwz16GkoWODuV3TsGKLIypiOV87icQalMaFKnu1vU7xO1rc65mroQ2Nx5GAmp3Nu+siI8MNXPqlCtRxb7w5hMOV0yhhI7HMr424VXKlbXwmkHAF6E1iZ0OiyqrBvPV8r+wzTRe49aXZ9U8DSn96Ueh6+74AxYrowKKO8k98F'}
    73. 

  73. 

  74. 

  75.     # s3_resource = boto3.resource(
    76. 

  76.     s3_resource = boto3.client(
    77. 

  77.         's3',
    78. 

  78.         aws_access_key_id=crd['AccessKeyId'],
    79. 

  79.         aws_secret_access_key=crd['SecretAccessKey'],
    80. 

  80.         aws_session_token=crd['SessionToken'],
    81. 

  81.     )
    82. 

  82.     response = s3_resource.get_object(
    83. 

  83.         Bucket='ansjerfilemanager',
    84. 

  84.         Key='face.jpg',
    85. 

  85.     )
    86. 

  86.     print(response)
    87. 

  87. 

  88. test()
    89.