egutierrez
47fac22230
- .claude/CLAUDE.md - .claude/commands/subagentes.md - .claude/rules/INDEX.md - .mcp.json - bash/functions/cybersecurity/analyze_dns.md - bash/functions/cybersecurity/audit_http_headers.md - bash/functions/cybersecurity/audit_ssh_config.md - bash/functions/cybersecurity/check_firewall.md - bash/functions/cybersecurity/detect_suspicious_users.md - bash/functions/cybersecurity/encrypt_file.md - ... Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2.8 KiB
2.8 KiB
name, kind, lang, domain, version, purity, signature, description, tags, uses_functions, uses_types, returns, returns_optional, error_type, imports, params, output, tested, tests, test_file_path, file_path
| name | kind | lang | domain | version | purity | signature | description | tags | uses_functions | uses_types | returns | returns_optional | error_type | imports | params | output | tested | tests | test_file_path | file_path | ||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| s3_presign_url | function | go | infra | 1.0.0 | impure | func S3PresignURL(cfg S3Config, key string, expiry time.Duration) (string, error) | STUB. Genera una URL presignada para download (GET) del objeto key en un bucket S3-compatible, valida durante expiry. Util para descargas directas sin pasar por el servidor. Requiere github.com/aws/aws-sdk-go-v2. |
|
|
false | error_go_core |
|
|
URL presignada como string. Empty + error si falla la generacion. STUB actual retorna siempre error "not implemented" | false | functions/infra/s3_presign_url.go |
Estado
Stub. Para activar la implementacion real:
- Añadir las mismas dependencias que
s3_upload. - Reemplazar el cuerpo del stub por:
func S3PresignURL(cfg S3Config, key string, expiry time.Duration) (string, error) { ctx := context.Background() awsCfg, err := awscfg.LoadDefaultConfig(ctx, awscfg.WithRegion(cfg.Region), awscfg.WithCredentialsProvider(credentials.NewStaticCredentialsProvider( cfg.AccessKey, cfg.SecretKey, "")), ) if err != nil { return "", fmt.Errorf("s3_presign_url: aws config: %w", err) } client := s3.NewFromConfig(awsCfg, func(o *s3.Options) { o.UsePathStyle = true if cfg.Endpoint != "" { scheme := "http" if cfg.UseSSL { scheme = "https" } o.BaseEndpoint = aws.String(fmt.Sprintf("%s://%s", scheme, cfg.Endpoint)) } }) psClient := s3.NewPresignClient(client) req, err := psClient.PresignGetObject(ctx, &s3.GetObjectInput{ Bucket: aws.String(cfg.Bucket), Key: aws.String(key), }, s3.WithPresignExpires(expiry)) if err != nil { return "", fmt.Errorf("s3_presign_url: presign: %w", err) } return req.URL, nil }
Ejemplo (con implementacion real)
url, err := S3PresignURL(cfg, "images/foto.png", time.Hour)
// url es valida 1 hora; el cliente puede descargar sin credenciales
fmt.Println(url)
Notas
Para uploads directos (PUT/POST presigned), se usaria psClient.PresignPutObject analogamente. Las URLs presignadas heredan los permisos de las credenciales que las generaron — no incrementan privilegios.