gsb_http_io.h

/*
 * cloudbacker - FUSE-based single file backing store
 *
 * Copyright 2008-2011 Archie L. Cobbs <archie@dellroad.org>
 * 
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 * 
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
 * 02110-1301, USA.
 */

#ifndef GSB_HTTP_IO_H
#define GSB_HTTP_IO_H

#include "http_gio.h"

/*
 * Cloudbacker - Google Cloud Storage specific parameters
 */

#define AUTH_VERSION_OAUTH2   		"oauth2"
#define GCS_BUCKET_STORAGECLASS         "StorageClass"

/* GS specific access permission strings */
#define GS_ACCESS_PRIVATE                           "private"
#define GS_ACCESS_PROJECT_PRIVATE                   "project-private"
#define GS_ACCESS_PUBLIC_READ                       "public-read"
#define GS_ACCESS_PUBLIC_READ_WRITE                 "public-read-write"
#define GS_ACCESS_AUTHENTICATED_READ                "authenticated-read"
#define GS_ACCESS_BUCKET_OWNER_READ                 "bucket-owner-read"
#define GS_ACCESS_BUCKET_OWNER_FULL_CONTROL         "bucket-owner-full-control"

/* GS - Default values for some configuration parameters */
#define GSBACKER_DEFAULT_ACCESS_TYPE                GS_ACCESS_PROJECT_PRIVATE
#define GSBACKER_DEFAULT_AUTH_VERSION               AUTH_VERSION_OAUTH2
#define GSBACKER_DEFAULT_REGION                     "us-east-1"                     /* TBD::Need to check and change if required */

/* HTTP IO specific definitions */
#define GSB_FILE_SIZE_HEADER            "x-goog-meta-gsbacker-filesize"
#define GSB_BLOCK_SIZE_HEADER           "x-goog-meta-gsbacker-blocksize"
#define GSB_COMPRESSION_LEVEL_HEADER    "x-goog-meta-gsbacker-compression-level"
#define GSB_ENCRYPTED_HEADER            "x-goog-meta-gsbacker-encrypted"
#define GSB_ENCRYPTION_HEADER           "x-goog-meta-gsbacker-encryption-cipher"
#define GSB_NAME_HASH_HEADER            "x-goog-meta-gsbacker-namehash"
#define GSB_HMAC_HEADER                 "x-goog-meta-gsbacker-hmac"
#define GSB_ACL_HEADER                  "x-goog-acl"
#define GSB_CONTENT_SHA256_HEADER       "x-goog-content-sha256"
#define GSB_STORAGE_CLASS_HEADER        "x-goog-storage-class"

/*
 * Authentication related definitions
 */

#define GCS_AUTHENTICATION_URL      "https://www.googleapis.com/oauth2/v3/token"

/* JWT constants */

/** JWT header format    {"alg":"RS256","typ":"JWT"} **/

#define JWT_HEADER_ALG                  "alg"
#define JWT_HEADER_RS256                "RS256"
#define JWT_HEADER_TYPE                 "typ"
#define JWT_HEADER_JWT                  "JWT"
#define JWT_HEADER_BUF_LEN               28	  // len({"alg":"RS256","typ":"JWT"})+1 for '\0'

#define JWT_CLAIMSET_ISS                "iss"
#define JWT_CLAIMSET_SCOPE              "scope"
#define JWT_CLAIMSET_SCOPE_VALUE        "https://www.googleapis.com/auth/devstorage.full_control"
#define JWT_CLAIMSET_AUD                "aud"
#define JWT_CLAIMSET_AUD_VALUE          "https://www.googleapis.com/oauth2/v3/token"
#define JWT_CLAIMSET_EXP                "exp"
#define JWT_CLAIMSET_IAT                "iat"
#define JWT_CLAIMSET_EXP_DURATION       3600     // google auth token expires after 3600sec
#define MIN_CLAIMSET_BUF_LEN            24       // try writing someminimum buffer size todetermine actual buffer size
#define JWT_CLAIMSET_BUF_LEN            512      // maximum buffer size required to hold claimset buffer

#define GS_DOMAIN                       "storage.googleapis.com"
#define AUTH_VERSION_OAUTH2             "oauth2"

#define JWT_AUTH_DEFAULT_PASSWORD       "notasecret"
#define GCS_OAUTH2_ACCESS_TOKEN         "access_token"

/* Adds authorization header to http request */
int http_io_add_oAuth2(struct http_io_private *priv, struct http_io *io, time_t now, const void *payload, size_t plen);

/* Destroy */
void set_http_io_gsb_params(struct http_io_conf *config);
void http_io_gcs_destroy(struct http_io_private *const priv);

/* Updates authentication information */
int update_gcs_credentials(struct http_io_private *const priv);

/* To get storageClass bucket attribute */
int http_io_gcs_bucket_attributes(struct cloudbacker_store *cb, void *arg);


#endif