Query formatter (leg100#3)

Author: leg100

formatter.go

@@ -1,118 +1,24 @@
 package surl
 
 import (
-	"bytes"
-	"encoding/base64"
-	"strconv"
+	"net/url"
 	"time"
 )
 
 // Formatter adds/extracts the signature and expiry to/from a URL according to a
 // specific format
 type Formatter interface {
-	// AddExpiry adds the expiry to the data, creating a payload for signing
-	AddExpiry(exp time.Time, data []byte) []byte
-	// AddSignature adds the signature to the payload, creating a signed message
-	AddSignature(sig, payload []byte) []byte
-	// ExtractSignature extracts the signature from the signed message,
-	// returning the signature as well as the signed payload.
-	ExtractSignature(msg []byte) ([]byte, []byte, error)
-	// ExtractExpiry extracts the expiry from the signed payload, returning the
-	// expiry as well as the original data.
-	ExtractExpiry(payload []byte) (time.Time, []byte, error)
-}
-
-// URLPathFormatter includes the signature and expiry in a
-// message according to the format: <prefix><sig>.<exp>/<data>. Suitable for
-// URL paths as an alternative to using query parameters.
-type URLPathFormatter struct {
-	// Prefix message with a string
-	Prefix string
-}
-
-// AddExpiry adds expiry as a path component e.g. /foo/bar ->
-// 390830893/foo/bar
-func (u *URLPathFormatter) AddExpiry(exp time.Time, data []byte) []byte {
-	// convert expiry to bytes
-	expBytes := strconv.FormatInt(exp.Unix(), 10)
-
-	payload := make([]byte, 0, len(expBytes)+len(data))
-	// add expiry
-	payload = append(payload, expBytes...)
-	// add data
-	return append(payload, data...)
-}
-
-// AddSignature adds signature as a path component alongside the expiry e.g.
-// abZ3G/foo/bar -> KKLJjd3090fklaJKLJK.abZ3G/foo/bar
-func (u *URLPathFormatter) AddSignature(sig, payload []byte) []byte {
-	encSize := base64.RawURLEncoding.EncodedLen(len(sig))
-	// calculate msg capacity
-	mcap := encSize + len(payload) + 1 // +1 for '.'
-	if u.Prefix != "" {
-		mcap += len(u.Prefix)
-	}
-	msg := make([]byte, 0, mcap)
-	// add prefix
-	msg = append(msg, u.Prefix...)
-	// add encoded sig
-	msg = msg[0 : len(u.Prefix)+encSize]
-	base64.RawURLEncoding.Encode(msg[len(u.Prefix):], sig)
-	// add '.'
-	msg = append(msg, '.')
-	// add payload
-	return append(msg, payload...)
-}
-
-// ExtractSignature decodes and splits the signature and payload from the signed message.
-func (u *URLPathFormatter) ExtractSignature(msg []byte) ([]byte, []byte, error) {
-	if !bytes.HasPrefix(msg, []byte(u.Prefix)) {
-		return nil, nil, ErrInvalidMessageFormat
-	}
-	// remove prefix
-	msg = msg[len(u.Prefix):]
-
-	// prise apart sig and payload
-	parts := bytes.SplitN(msg, []byte{'.'}, 2)
-	if len(parts) != 2 {
-		return nil, nil, ErrInvalidMessageFormat
-	}
-	sig := parts[0]
-	payload := parts[1]
-
-	// decode base64-encoded sig into bytes
-	decoded := make([]byte, base64.RawURLEncoding.DecodedLen(len(sig)))
-	_, err := base64.RawURLEncoding.Decode(decoded, sig)
-	if err != nil {
-		return nil, nil, err
-	}
-
-	return decoded, payload, nil
-}
+	// AddExpiry adds an expiry to a URL
+	AddExpiry(*url.URL, time.Time)
 
-// ExtractExpiry decodes and splits the expiry and data from the payload.
-func (u *URLPathFormatter) ExtractExpiry(payload []byte) (time.Time, []byte, error) {
-	// prise apart expiry and data
-	slash := 0
-	for i, b := range payload {
-		if b == '/' {
-			slash = i
-			break
-		}
-	}
-	if slash == 0 {
-		return time.Time{}, nil, ErrInvalidMessageFormat
-	}
-	expBytes := payload[:slash]
-	data := payload[slash:]
+	// AddSignature adds a signature to a URL
+	AddSignature(*url.URL, []byte)
 
-	// convert bytes into int
-	expInt, err := strconv.ParseInt(string(expBytes), 10, 64)
-	if err != nil {
-		return time.Time{}, nil, err
-	}
-	// convert int into time.Time
-	t := time.Unix(expInt, 0)
+	// ExtractSignature extracts a signature from a URL, returning the modified
+	// URL and the signature.
+	ExtractSignature(*url.URL) (*url.URL, []byte, error)
 
-	return t, data, nil
+	// ExtractExpiry extracts an expiry from a URL, returning the modified URL
+	// and the signature.
+	ExtractExpiry(*url.URL) (*url.URL, time.Time, error)
 }

formatter_test.go

@@ -0,0 +1,81 @@
+package surl
+
+import (
+	"encoding/base64"
+	"fmt"
+	"net/url"
+	"strconv"
+	"strings"
+	"time"
+)
+
+// PathFormatter includes the signature and expiry in a
+// message according to the format: <sig>.<exp>/<data>. Suitable for
+// URL paths as an alternative to using query parameters.
+type PathFormatter struct {
+	signer *Signer
+}
+
+// AddExpiry adds expiry as a path component e.g. /foo/bar ->
+// 390830893/foo/bar
+func (f *PathFormatter) AddExpiry(unsigned *url.URL, expiry time.Time) {
+	// convert expiry to string
+	expBytes := strconv.FormatInt(expiry.Unix(), 10)
+
+	unsigned.Path = expBytes + unsigned.Path
+}
+
+// AddSignature adds signature as a path component alongside the expiry e.g.
+// abZ3G/foo/bar -> /KKLJjd3090fklaJKLJK.abZ3G/foo/bar
+func (f *PathFormatter) AddSignature(payload *url.URL, sig []byte) {
+	encoded := base64.RawURLEncoding.EncodeToString(sig)
+
+	payload.Path = "/" + encoded + "." + payload.Path
+}
+
+// ExtractSignature decodes and splits the signature and payload from the signed message.
+func (f *PathFormatter) ExtractSignature(u *url.URL) (*url.URL, []byte, error) {
+	// prise apart encoded and payload
+	encoded, payload, found := strings.Cut(u.Path, ".")
+	if !found {
+		return nil, nil, ErrInvalidSignedURL
+	}
+	// remove leading /
+	encoded = encoded[1:]
+
+	sig, err := base64.RawURLEncoding.DecodeString(encoded)
+	if err != nil {
+		return nil, nil, fmt.Errorf("%w: invalid base64: %s", ErrInvalidSignature, encoded)
+	}
+
+	u.Path = payload
+
+	if f.signer.skipQuery {
+		// remove all query params because they don't form part of the input to
+		// the signature computation
+		u.RawQuery = ""
+	}
+
+	return u, sig, nil
+}
+
+// ExtractExpiry decodes and splits the expiry and data from the payload.
+func (*PathFormatter) ExtractExpiry(u *url.URL) (*url.URL, time.Time, error) {
+	// prise apart expiry and data
+	expiry, path, found := strings.Cut(u.Path, "/")
+	if !found {
+		return nil, time.Time{}, ErrInvalidSignedURL
+	}
+	// add leading slash back to path
+	u.Path = "/" + path
+
+	// convert bytes into int
+	expInt, err := strconv.ParseInt(string(expiry), 10, 64)
+	if err != nil {
+		return nil, time.Time{}, err
+	}
+	// convert int into time.Time
+	t := time.Unix(expInt, 0)
+
+	return u, t, nil
+}

path_formatter.go

@@ -0,0 +1,44 @@
+package surl
+
+import (
+	"errors"
+	"net/url"
+	"testing"
+	"time"
+
+	"github.com/stretchr/testify/assert"
+	"github.com/stretchr/testify/require"
+)
+
+func TestPathFormatter(t *testing.T) {
+	f := PathFormatter{&Signer{}}
+	// unsigned url with existing path
+	u := &url.URL{Path: "/foo/bar"}
+
+	expiry := time.Date(2081, time.February, 24, 4, 0, 0, 0, time.UTC)
+
+	f.AddExpiry(u, expiry)
+	assert.Equal(t, "3507595200/foo/bar", u.Path)
+
+	f.AddSignature(u, []byte("abcdef"))
+	assert.Equal(t, "/YWJjZGVm.3507595200/foo/bar", u.Path)
+
+	u, sig, err := f.ExtractSignature(u)
+	require.NoError(t, err)
+	assert.Equal(t, "abcdef", string(sig))
+	assert.Equal(t, "3507595200/foo/bar", u.Path)
+
+	u, got, err := f.ExtractExpiry(u)
+	require.NoError(t, err)
+	assert.Equal(t, expiry, got.UTC())
+	assert.Equal(t, "/foo/bar", u.Path)
+}
+
+func TestPathFormatter_Errors(t *testing.T) {
+	signer := New([]byte("abc123"), WithPathFormatter())
+
+	t.Run("invalid signature", func(t *testing.T) {
+		err := signer.Verify("http://abc.com/MICKEYMOUSE.123/foo/bar")
+		assert.Truef(t, errors.Is(err, ErrInvalidSignature), "got error: %w", err)
+	})
+}

path_formatter_test.go

@@ -0,0 +1,84 @@
+package surl
+
+import (
+	"encoding/base64"
+	"fmt"
+	"net/url"
+	"strconv"
+	"time"
+)
+
+// QueryFormatter includes the signature and expiry as URL query parameters
+// according to the format: /path?expiry=<exp>&signature=<sig>.
+type QueryFormatter struct {
+	signer *Signer
+}
+
+// AddExpiry adds expiry as a query parameter e.g. /foo/bar ->
+// /foo/bar?expiry=<exp>
+func (f *QueryFormatter) AddExpiry(unsigned *url.URL, exp time.Time) {
+	// convert expiry to string
+	val := strconv.FormatInt(exp.Unix(), 10)
+
+	q := unsigned.Query()
+	q.Add("expiry", val)
+	unsigned.RawQuery = q.Encode()
+}
+
+// AddSignature adds signature as a query parameter alongside the expiry e.g.
+// /foo/bar?expiry=<exp> -> /foo/bar?expiry=<exp>&signature=<sig>
+func (f *QueryFormatter) AddSignature(payload *url.URL, sig []byte) {
+	encoded := base64.RawURLEncoding.EncodeToString(sig)
+
+	q := payload.Query()
+	q.Add("signature", encoded)
+	payload.RawQuery = q.Encode()
+}
+
+// ExtractSignature decodes and splits the signature and payload from the signed message.
+func (f *QueryFormatter) ExtractSignature(u *url.URL) (*url.URL, []byte, error) {
+	q := u.Query()
+	encoded := q.Get("signature")
+	if encoded == "" {
+		return nil, nil, fmt.Errorf("%w: %s", ErrInvalidSignedURL, u.String())
+	}
+
+	// decode base64-encoded sig into bytes
+	sig, err := base64.RawURLEncoding.DecodeString(encoded)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	if f.signer.skipQuery {
+		// remove all query params other than expiry because they don't form
+		// part of the input to the signature computation.
+		expiry := u.Query().Get("expiry")
+		u.RawQuery = url.Values{"expiry": {expiry}}.Encode()
+	} else {
+		q.Del("signature")
+		u.RawQuery = q.Encode()
+	}
+
+	return u, sig, nil
+}
+
+// ExtractExpiry decodes and splits the expiry and data from the payload.
+func (f *QueryFormatter) ExtractExpiry(u *url.URL) (*url.URL, time.Time, error) {
+	q := u.Query()
+	encoded := q.Get("expiry")
+	if encoded == "" {
+		return nil, time.Time{}, ErrInvalidSignedURL
+	}
+	q.Del("expiry")
+	u.RawQuery = q.Encode()
+
+	// convert bytes into int
+	expInt, err := strconv.ParseInt(string(encoded), 10, 64)
+	if err != nil {
+		return nil, time.Time{}, err
+	}
+	// convert int into time.Time
+	t := time.Unix(expInt, 0)
+
+	return u, t, nil
+}