diff --git a/go.mod b/go.mod index 0b139ff..29ef963 100644 --- a/go.mod +++ b/go.mod @@ -12,6 +12,7 @@ require ( github.com/gorilla/websocket v1.5.3 github.com/jinzhu/now v1.1.5 github.com/json-iterator/go v1.1.12 + github.com/minio/minio-go/v7 v7.0.98 github.com/mojocn/base64Captcha v1.3.8 github.com/mritd/chinaid v1.0.4 github.com/panjf2000/ants/v2 v2.11.5 @@ -57,10 +58,12 @@ require ( github.com/cloudwego/base64x v0.1.6 // indirect github.com/davecgh/go-spew v1.1.1 // indirect github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f // indirect + github.com/dustin/go-humanize v1.0.1 // indirect github.com/fsnotify/fsnotify v1.9.0 // indirect github.com/gabriel-vasile/mimetype v1.4.12 // indirect github.com/gammazero/toposort v0.1.1 // indirect github.com/gin-contrib/sse v1.1.0 // indirect + github.com/go-ini/ini v1.67.0 // indirect github.com/go-playground/locales v0.14.1 // indirect github.com/go-playground/universal-translator v0.18.1 // indirect github.com/go-sql-driver/mysql v1.8.1 // indirect @@ -71,15 +74,19 @@ require ( github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 // indirect github.com/golang/snappy v0.0.4 // indirect github.com/jinzhu/inflection v1.0.0 // indirect - github.com/klauspost/compress v1.18.0 // indirect + github.com/klauspost/compress v1.18.2 // indirect github.com/klauspost/cpuid/v2 v2.3.0 // indirect + github.com/klauspost/crc32 v1.3.0 // indirect github.com/leodido/go-urn v1.4.0 // indirect github.com/mattn/go-isatty v0.0.20 // indirect + github.com/minio/crc64nvme v1.1.1 // indirect + github.com/minio/md5-simd v1.1.2 // indirect github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect github.com/modern-go/reflect2 v1.0.2 // indirect github.com/montanaflynn/stats v0.7.1 // indirect github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect github.com/pelletier/go-toml/v2 v2.2.4 // indirect + github.com/philhofer/fwd v1.2.0 // indirect github.com/pmezard/go-difflib v1.0.0 // indirect github.com/prometheus/client_model v0.6.2 // indirect github.com/prometheus/common v0.66.1 // indirect @@ -88,6 +95,7 @@ require ( github.com/quic-go/quic-go v0.54.0 // indirect github.com/richardlehane/mscfb v1.0.4 // indirect github.com/richardlehane/msoleps v1.0.4 // indirect + github.com/rs/xid v1.6.0 // indirect github.com/sagikazarmark/locafero v0.11.0 // indirect github.com/sourcegraph/conc v0.3.1-0.20240121214520-5f936abd7ae8 // indirect github.com/spf13/afero v1.15.0 // indirect @@ -100,6 +108,7 @@ require ( github.com/tidwall/rtred v0.1.2 // indirect github.com/tidwall/tinyqueue v0.1.1 // indirect github.com/tiendc/go-deepcopy v1.7.1 // indirect + github.com/tinylib/msgp v1.6.1 // indirect github.com/twitchyliquid64/golang-asm v0.15.1 // indirect github.com/ugorji/go/codec v1.3.0 // indirect github.com/xdg-go/pbkdf2 v1.0.0 // indirect diff --git a/go.sum b/go.sum index 3b4162f..312efa8 100644 --- a/go.sum +++ b/go.sum @@ -857,6 +857,7 @@ github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f h1:lO4WD4F/r github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f/go.mod h1:cuUVRXasLTGF7a8hSLbxyZXjz+1KgoB3wDUb6vlszIc= github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE= github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk= +github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY= github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto= github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= @@ -903,6 +904,8 @@ github.com/go-fonts/stix v0.1.0/go.mod h1:w/c1f0ldAUlJmLBvlbkvVXLAD+tAMqobIIQpmn github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU= github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8= github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8= +github.com/go-ini/ini v1.67.0 h1:z6ZrTEZqSWOTyH2FlglNbNgARyHG8oLW9gMELqKr06A= +github.com/go-ini/ini v1.67.0/go.mod h1:ByCAeIL28uOIIG0E3PJtZPDL8WnHpFKFOtgjp+3Ies8= github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as= github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as= github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY= @@ -1129,11 +1132,14 @@ github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck= github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE= github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU= -github.com/klauspost/compress v1.18.0 h1:c/Cqfb0r+Yi+JtIEq73FWXVkRonBlf0CRNYc8Zttxdo= -github.com/klauspost/compress v1.18.0/go.mod h1:2Pp+KzxcywXVXMr50+X0Q/Lsb43OQHYWRCY2AiWywWQ= +github.com/klauspost/compress v1.18.2 h1:iiPHWW0YrcFgpBYhsA6D1+fqHssJscY/Tm/y2Uqnapk= +github.com/klauspost/compress v1.18.2/go.mod h1:R0h/fSBs8DE4ENlcrlib3PsXS61voFxhIs2DeRhCvJ4= +github.com/klauspost/cpuid/v2 v2.0.1/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg= github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg= github.com/klauspost/cpuid/v2 v2.3.0 h1:S4CRMLnYUhGeDFDqkGriYKdfoFlDnMtqTiI/sFzhA9Y= github.com/klauspost/cpuid/v2 v2.3.0/go.mod h1:hqwkgyIinND0mEev00jJYCxPNVRVXFQeu1XKlok6oO0= +github.com/klauspost/crc32 v1.3.0 h1:sSmTt3gUt81RP655XGZPElI0PelVTZ6YwCRnPSupoFM= +github.com/klauspost/crc32 v1.3.0/go.mod h1:D7kQaZhnkX/Y0tstFGf8VUzv2UofNGqCjnC3zdHB0Hw= github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg= @@ -1172,6 +1178,12 @@ github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfr github.com/miekg/dns v1.0.14/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg= github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY= github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE= +github.com/minio/crc64nvme v1.1.1 h1:8dwx/Pz49suywbO+auHCBpCtlW1OfpcLN7wYgVR6wAI= +github.com/minio/crc64nvme v1.1.1/go.mod h1:eVfm2fAzLlxMdUGc0EEBGSMmPwmXD5XiNRpnu9J3bvg= +github.com/minio/md5-simd v1.1.2 h1:Gdi1DZK69+ZVMoNHRXJyNcxrMA4dSxoYHZSQbirFg34= +github.com/minio/md5-simd v1.1.2/go.mod h1:MzdKDxYpY2BT9XQFocsiZf/NKVtR7nkE4RoEpN+20RM= +github.com/minio/minio-go/v7 v7.0.98 h1:MeAVKjLVz+XJ28zFcuYyImNSAh8Mq725uNW4beRisi0= +github.com/minio/minio-go/v7 v7.0.98/go.mod h1:cY0Y+W7yozf0mdIclrttzo1Iiu7mEf9y7nk2uXqMOvM= github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc= github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0= github.com/mitchellh/go-testing-interface v1.0.0/go.mod h1:kRemZodwjscx+RGhAo8eIhFbs2+BFgRtFPeD/KE+zxI= @@ -1205,6 +1217,8 @@ github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FI github.com/pelletier/go-toml v1.9.3/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c= github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4= github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY= +github.com/philhofer/fwd v1.2.0 h1:e6DnBTl7vGY+Gz322/ASL4Gyp1FspeMvx1RNDoToZuM= +github.com/philhofer/fwd v1.2.0/go.mod h1:RqIHx9QI14HlwKwm98g9Re5prTQ6LdeRQn+gXJFxsJM= github.com/phpdave11/gofpdf v1.4.2/go.mod h1:zpO6xFn9yxo3YLyMvW8HcKWVdbNqgIfOOp2dXMnm1mY= github.com/phpdave11/gofpdi v1.0.12/go.mod h1:vBmVV0Do6hSBHC8uKUQ71JGW+ZGQq74llk/7bXwjDoI= github.com/phpdave11/gofpdi v1.0.13/go.mod h1:vBmVV0Do6hSBHC8uKUQ71JGW+ZGQq74llk/7bXwjDoI= @@ -1281,6 +1295,8 @@ github.com/rs/cors v1.11.1 h1:eU3gRzXLRK57F5rKMGMZURNdIG4EoAmX8k94r9wXWHA= github.com/rs/cors v1.11.1/go.mod h1:XyqrcTp5zjWr1wsJ8PIRZssZ8b/WMcMf71DJnit4EMU= github.com/rs/cors/wrapper/gin v0.0.0-20260123235804-c9e5260a4ed4 h1:o+wYsOfZvOhP3CLGQH5MGVaw9xWjkGIXYH9nJ7NA2FM= github.com/rs/cors/wrapper/gin v0.0.0-20260123235804-c9e5260a4ed4/go.mod h1:UkcVz4d5PVHMbLZcN5lqy4KOGXiO9vVdxlITo+boMCE= +github.com/rs/xid v1.6.0 h1:fV591PaemRlL6JfRxGDEPl69wICngIQ3shQtzfy2gxU= +github.com/rs/xid v1.6.0/go.mod h1:7XoLgs4eV+QndskICGsho+ADou8ySMSjJKDIan90Nz0= github.com/ruudk/golang-pdf417 v0.0.0-20181029194003-1af4ab5afa58/go.mod h1:6lfFZQK844Gfx8o5WFuvpxWRwnSoipWe/p622j1v06w= github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245/go.mod h1:pQAZKsJ8yyVxGRWYNEm9oFB8ieLgKFnamEyDmSA0BRk= github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts= @@ -1359,6 +1375,8 @@ github.com/tidwall/tinyqueue v0.1.1 h1:SpNEvEggbpyN5DIReaJ2/1ndroY8iyEGxPYxoSaym github.com/tidwall/tinyqueue v0.1.1/go.mod h1:O/QNHwrnjqr6IHItYrzoHAKYhBkLI67Q096fQP5zMYw= github.com/tiendc/go-deepcopy v1.7.1 h1:LnubftI6nYaaMOcaz0LphzwraqN8jiWTwm416sitff4= github.com/tiendc/go-deepcopy v1.7.1/go.mod h1:4bKjNC2r7boYOkD2IOuZpYjmlDdzjbpTRyCx+goBCJQ= +github.com/tinylib/msgp v1.6.1 h1:ESRv8eL3u+DNHUoSAAQRE50Hm162zqAnBoGv9PzScPY= +github.com/tinylib/msgp v1.6.1/go.mod h1:RSp0LW9oSxFut3KzESt5Voq4GVWyS+PSulT77roAqEA= github.com/tus/tusd v1.13.0 h1:W7rtb1XPSpde/GPZAgdfUS3vus2Jt2KmckS6OUd3CU8= github.com/tus/tusd v1.13.0/go.mod h1:1tX4CDGlx8koHGFJdSaJ5ybUIm2NeVloJgZEPSKRcQA= github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI= diff --git a/pkg/crypto/interface.go b/pkg/crypto/interface.go index 9593987..f82db95 100644 --- a/pkg/crypto/interface.go +++ b/pkg/crypto/interface.go @@ -24,11 +24,11 @@ type Signer interface { } type Config struct { - SecretKey string // 对称加密密钥 - SignKey string // 签名密钥 - TimestampWindow time.Duration // 时间戳允许的时间窗口 - EnableTimestamp bool // 是否启用时间戳验证 - EnableSignature bool // 是否启用签名 + SecretKey string `yaml:"secret_key" json:"secret_key"` // 对称加密密钥 + SignKey string `yaml:"sign_key" json:"sign_key"` // 签名密钥 + TimestampWindow time.Duration `yaml:"timestamp_window" json:"timestamp_window"` // 时间戳允许的时间窗口 + EnableTimestamp bool `yaml:"enable_timestamp" json:"enable_timestamp"` // 是否启用时间戳验证 + EnableSignature bool `yaml:"enable_signature" json:"enable_signature"` // 是否启用签名 } type EncryptedRequest struct { diff --git a/pkg/storage/client.go b/pkg/storage/client.go new file mode 100644 index 0000000..3dbc559 --- /dev/null +++ b/pkg/storage/client.go @@ -0,0 +1,312 @@ +package storage + +import ( + "context" + "crypto/md5" + "encoding/hex" + "fmt" + "io" + "path/filepath" + "strings" + "time" + + "github.com/minio/minio-go/v7" + "github.com/minio/minio-go/v7/pkg/credentials" +) + +// Client MinIO客户端 +type Client struct { + client *minio.Client + config *Config +} + +// NewClient 创建MinIO客户端 +func NewClient(config *Config) (*Client, error) { + client, err := minio.New(config.Endpoint, &minio.Options{ + Creds: credentials.NewStaticV4(config.AccessKeyID, config.SecretAccessKey, ""), + Secure: config.UseSSL, + }) + if err != nil { + return nil, fmt.Errorf("创建MinIO客户端失败: %w", err) + } + + c := &Client{ + client: client, + config: config, + } + + // 确保默认桶存在 + if config.BucketName != "" { + ctx, cancel := context.WithTimeout(context.Background(), 10*time.Second) + defer cancel() + + exists, err := c.BucketExists(ctx, config.BucketName) + if err != nil { + return nil, fmt.Errorf("检查桶失败: %w", err) + } + if !exists { + if err := c.CreateBucket(ctx, config.BucketName); err != nil { + return nil, fmt.Errorf("创建桶失败: %w", err) + } + } + } + + return c, nil +} + +// UploadToken 上传凭证 +type UploadToken struct { + Key string `json:"key"` // 文件存储路径 + UploadURL string `json:"upload_url"` // 预签名上传URL + ExpiresAt time.Time `json:"expires_at"` // 过期时间 + BucketName string `json:"bucket_name"` // 桶名称 + AccessURL string `json:"access_url"` // 访问URL(可选) +} + +// DownloadToken 下载凭证 +type DownloadToken struct { + Key string `json:"key"` // 文件key + DownloadURL string `json:"download_url"` // 预签名下载URL + ExpiresAt time.Time `json:"expires_at"` // 过期时间 + Filename string `json:"filename"` // 文件名(可选) +} + +// FileInfo 文件信息 +type FileInfo struct { + Key string `json:"key"` // 文件key + Size int64 `json:"size"` // 文件大小 + ETag string `json:"etag"` // ETag(MD5) + ContentType string `json:"content_type"` // Content-Type + LastModified time.Time `json:"last_modified"` // 最后修改时间 + Metadata map[string]string `json:"metadata"` // 元数据 + URL string `json:"url"` // 访问URL + Exists bool `json:"exists"` // 是否存在 +} + +// GenerateUploadToken 生成上传凭证 +func (c *Client) GenerateUploadToken(ctx context.Context, key string, bucketName ...string) (*UploadToken, error) { + bucket := c.config.BucketName + if len(bucketName) > 0 && bucketName[0] != "" { + bucket = bucketName[0] + } + + // 生成预签名PUT URL + presignedURL, err := c.client.PresignedPutObject(ctx, bucket, key, c.config.PresignExpires) + if err != nil { + return nil, fmt.Errorf("生成上传凭证失败: %w", err) + } + + token := &UploadToken{ + Key: key, + UploadURL: presignedURL.String(), + ExpiresAt: time.Now().Add(c.config.PresignExpires), + BucketName: bucket, + } + + // 如果配置了CDN域名,生成访问URL + if c.config.CDNDomain != "" { + token.AccessURL = c.buildCDNURL(bucket, key) + } + + return token, nil +} + +// GenerateDownloadToken 生成下载凭证 +func (c *Client) GenerateDownloadToken(ctx context.Context, key string, bucketName ...string) (*DownloadToken, error) { + bucket := c.config.BucketName + if len(bucketName) > 0 && bucketName[0] != "" { + bucket = bucketName[0] + } + + // 检查文件是否存在 + exists, err := c.FileExists(ctx, key, bucket) + if err != nil { + return nil, err + } + if !exists { + return nil, fmt.Errorf("文件不存在: %s", key) + } + + // 生成预签名GET URL + presignedURL, err := c.client.PresignedGetObject(ctx, bucket, key, c.config.PresignExpires, nil) + if err != nil { + return nil, fmt.Errorf("生成下载凭证失败: %w", err) + } + + token := &DownloadToken{ + Key: key, + DownloadURL: presignedURL.String(), + ExpiresAt: time.Now().Add(c.config.PresignExpires), + Filename: filepath.Base(key), + } + + return token, nil +} + +// VerifyFile 验证文件完整性 +func (c *Client) VerifyFile(ctx context.Context, key string, expectedMD5 string, bucketName ...string) (*FileInfo, error) { + bucket := c.config.BucketName + if len(bucketName) > 0 && bucketName[0] != "" { + bucket = bucketName[0] + } + + // 获取文件信息 + stat, err := c.client.StatObject(ctx, bucket, key, minio.StatObjectOptions{}) + if err != nil { + errResponse := minio.ToErrorResponse(err) + if errResponse.Code == "NoSuchKey" { + return &FileInfo{ + Key: key, + Exists: false, + }, nil + } + return nil, fmt.Errorf("获取文件信息失败: %w", err) + } + + fileInfo := &FileInfo{ + Key: key, + Size: stat.Size, + ETag: strings.Trim(stat.ETag, "\""), // 去除引号 + ContentType: stat.ContentType, + LastModified: stat.LastModified, + Metadata: stat.UserMetadata, + Exists: true, + URL: c.buildAccessURL(bucket, key), + } + + // 如果提供了期望的MD5,进行验证 + if expectedMD5 != "" { + if !c.compareMD5(fileInfo.ETag, expectedMD5) { + return fileInfo, fmt.Errorf("文件MD5不匹配,期望: %s, 实际: %s", expectedMD5, fileInfo.ETag) + } + } + + return fileInfo, nil +} + +// CalculateFileMD5 计算文件MD5(从MinIO下载并计算) +func (c *Client) CalculateFileMD5(ctx context.Context, key string, bucketName ...string) (string, error) { + bucket := c.config.BucketName + if len(bucketName) > 0 && bucketName[0] != "" { + bucket = bucketName[0] + } + + // 下载文件 + object, err := c.client.GetObject(ctx, bucket, key, minio.GetObjectOptions{}) + if err != nil { + return "", fmt.Errorf("下载文件失败: %w", err) + } + defer func() { _ = object.Close() }() + + // 计算MD5 + hash := md5.New() + if _, err := io.Copy(hash, object); err != nil { + return "", fmt.Errorf("计算MD5失败: %w", err) + } + + return hex.EncodeToString(hash.Sum(nil)), nil +} + +// FileExists 检查文件是否存在 +func (c *Client) FileExists(ctx context.Context, key string, bucketName ...string) (bool, error) { + bucket := c.config.BucketName + if len(bucketName) > 0 && bucketName[0] != "" { + bucket = bucketName[0] + } + + _, err := c.client.StatObject(ctx, bucket, key, minio.StatObjectOptions{}) + if err != nil { + errResponse := minio.ToErrorResponse(err) + if errResponse.Code == "NoSuchKey" { + return false, nil + } + return false, fmt.Errorf("检查文件失败: %w", err) + } + + return true, nil +} + +// DeleteFile 删除文件 +func (c *Client) DeleteFile(ctx context.Context, key string, bucketName ...string) error { + bucket := c.config.BucketName + if len(bucketName) > 0 && bucketName[0] != "" { + bucket = bucketName[0] + } + + err := c.client.RemoveObject(ctx, bucket, key, minio.RemoveObjectOptions{}) + if err != nil { + return fmt.Errorf("删除文件失败: %w", err) + } + + return nil +} + +// GetFileInfo 获取文件信息 +func (c *Client) GetFileInfo(ctx context.Context, key string, bucketName ...string) (*FileInfo, error) { + return c.VerifyFile(ctx, key, "", bucketName...) +} + +// BucketExists 检查桶是否存在 +func (c *Client) BucketExists(ctx context.Context, bucketName string) (bool, error) { + exists, err := c.client.BucketExists(ctx, bucketName) + if err != nil { + return false, fmt.Errorf("检查桶失败: %w", err) + } + return exists, nil +} + +// CreateBucket 创建桶 +func (c *Client) CreateBucket(ctx context.Context, bucketName string) error { + err := c.client.MakeBucket(ctx, bucketName, minio.MakeBucketOptions{ + Region: c.config.Region, + }) + if err != nil { + return fmt.Errorf("创建桶失败: %w", err) + } + return nil +} + +// SetBucketPublic 设置桶为公开访问 +func (c *Client) SetBucketPublic(ctx context.Context, bucketName string) error { + policy := fmt.Sprintf(`{ + "Version": "2012-10-17", + "Statement": [{ + "Effect": "Allow", + "Principal": {"AWS": ["*"]}, + "Action": ["s3:GetObject"], + "Resource": ["arn:aws:s3:::%s/*"] + }] + }`, bucketName) + + err := c.client.SetBucketPolicy(ctx, bucketName, policy) + if err != nil { + return fmt.Errorf("设置桶策略失败: %w", err) + } + return nil +} + +// buildAccessURL 构建访问URL +func (c *Client) buildAccessURL(bucket, key string) string { + if c.config.CDNDomain != "" { + return c.buildCDNURL(bucket, key) + } + + protocol := "http" + if c.config.UseSSL { + protocol = "https" + } + + return fmt.Sprintf("%s://%s/%s/%s", protocol, c.config.Endpoint, bucket, key) +} + +// buildCDNURL 构建CDN URL +func (c *Client) buildCDNURL(bucket, key string) string { + return fmt.Sprintf("%s/%s/%s", strings.TrimRight(c.config.CDNDomain, "/"), bucket, key) +} + +// compareMD5 比较MD5 +func (c *Client) compareMD5(etag, md5 string) bool { + etag = strings.ToLower(strings.Trim(etag, "\"")) + md5 = strings.ToLower(strings.Trim(md5, "\"")) + return etag == md5 +} diff --git a/pkg/storage/config.go b/pkg/storage/config.go new file mode 100644 index 0000000..017357c --- /dev/null +++ b/pkg/storage/config.go @@ -0,0 +1,15 @@ +package storage + +import "time" + +// Config MinIO配置 +type Config struct { + Endpoint string `yaml:"endpoint" json:"endpoint"` // MinIO地址 + AccessKeyID string `yaml:"access_key_id" json:"access_key_id"` // AccessKey + SecretAccessKey string `yaml:"secret_access_key" json:"secret_access_key"` // SecretKey + UseSSL bool `yaml:"use_ssl" json:"use_ssl"` // 是否使用SSL + BucketName string `yaml:"bucket_name" json:"bucket_name"` // 默认桶名称 + Region string `yaml:"region" json:"region"` // 区域 + CDNDomain string `yaml:"cdn_domain" json:"cdn_domain"` // CDN域名(可选) + PresignExpires time.Duration `yaml:"presign_expires" json:"presign_expires"` // 预签名URL过期时间,默认15分钟 +}