AwsProductSender.java

  1. package gov.usgs.earthquake.aws;

  3. import gov.usgs.earthquake.distribution.ConfigurationException;
  4. import gov.usgs.earthquake.distribution.InvalidSignatureException;
  5. import gov.usgs.earthquake.distribution.ProductSender;
  6. import gov.usgs.earthquake.product.Content;
  7. import gov.usgs.earthquake.product.Product;
  8. import gov.usgs.earthquake.product.ProductId;
  9. import gov.usgs.earthquake.product.URLContent;
  10. import gov.usgs.earthquake.product.io.JsonProduct;
  11. import gov.usgs.util.Config;
  12. import gov.usgs.util.CryptoUtils;
  13. import gov.usgs.util.DefaultConfigurable;
  14. import gov.usgs.util.FileUtils;
  15. import gov.usgs.util.StreamUtils;
  16. import gov.usgs.util.XmlUtils;
  17. import java.io.File;
  18. import java.io.InputStream;
  19. import java.io.OutputStream;
  20. import java.net.HttpURLConnection;
  21. import java.net.URL;
  22. import java.security.PrivateKey;
  23. import java.util.Date;
  24. import java.util.Map;
  25. import java.util.concurrent.ConcurrentHashMap;
  26. import java.util.logging.Level;
  27. import java.util.logging.Logger;
  28. import javax.json.Json;
  29. import javax.json.JsonObject;

  31. /** Send using AWS Hub API. */
  32. public class AwsProductSender extends DefaultConfigurable implements ProductSender {

  34.   /** Initialzation of logger. For us later in file. */
  35.   public static final Logger LOGGER = Logger.getLogger(AwsProductSender.class.getName());

  37.   /** Base URL for Hub API. */
  38.   public static final String HUB_URL_PROPERTY = "url";
  39.   /** Private Key to sign products, if signProducts is true. */
  40.   public static final String PRIVATE_KEY_PROPERTY = "privateKey";
  41.   /** Whether to sign products using private key. */
  42.   public static final String SIGN_PRODUCTS_PROPERTY = "signProducts";

  44.   /**url where products are sent */
  45.   protected URL hubUrl;
  46.   /** signing key */
  47.   protected PrivateKey privateKey;
  48.   /** wheter to sign products */
  49.   protected boolean signProducts = false;

  51.   /** Connection timeout. 5s seems excessive, but be cautious for now */
  52.   protected int connectTimeout = 5000;
  53.   /** Server-side timeout. Called at getInputStream().read() */
  54.   protected int readTimeout = 30000;

  56.   /** Empty class constructor */
  57.   public AwsProductSender() {}

  59.   public AwsProductSender(URL url) {
  60.     this.hubUrl = url;
  61.   }

  63.   @Override
  64.   public void configure(Config config) throws Exception {
  65.     super.configure(config);

  67.     hubUrl = new URL(config.getProperty(HUB_URL_PROPERTY));
  68.     LOGGER.config("[" + getName() + "] url=" + hubUrl.toString());

  70.     final String sign = config.getProperty(SIGN_PRODUCTS_PROPERTY);
  71.     if (sign != null) {
  72.       signProducts = Boolean.valueOf(sign);
  73.     }
  74.     LOGGER.config("[" + getName() + "] sign products=" + signProducts);

  76.     final String key = config.getProperty(PRIVATE_KEY_PROPERTY);
  77.     if (key != null) {
  78.       privateKey = CryptoUtils.readOpenSSHPrivateKey(
  79.           FileUtils.readFile(new File(key)),
  80.           null);
  81.       LOGGER.config("[" + getName() + "] private key=" + key);
  82.     }

  84.     if (signProducts && privateKey == null) {
  85.       // no key configured
  86.       throw new ConfigurationException("[" + getName() + "] " + SIGN_PRODUCTS_PROPERTY
  87.           + " requires a private key for signing");
  88.     }

  90.   }

  92.   /**
  93.    * Send a product to the hub.
  94.    */
  95.   @Override
  96.   public void sendProduct(final Product product) throws Exception {
  97.     final ProductId id = product.getId();

  99.     // re-sign if configured
  100.     if (signProducts) {
  101.       if (product.getSignature() != null) {
  102.         // preserve original signature
  103.         product.getProperties().put("original-signature", product.getSignature());
  104.         product.getProperties().put("original-signature-version",
  105.             product.getSignatureVersion().toString());
  106.       }
  107.       product.sign(privateKey, CryptoUtils.Version.SIGNATURE_V2);
  108.     }
  109.     // convert to json
  110.     JsonObject json = new JsonProduct().getJsonObject(product);

  112.     final long start = new Date().getTime();
  113.     final long afterUploadContent;
  114.     try {
  115.       // upload contents
  116.       if (
  117.         // has contents
  118.         product.getContents().size() > 0
  119.         // and not only inline content
  120.         && !(product.getContents().size() == 1 && product.getContents().get("") != null)
  121.       ) {
  122.         LOGGER.fine("Getting upload urls for " + json.toString());
  123.         // get upload urls, response is product with signed content urls for upload
  124.         Product uploadProduct;
  125.         try {
  126.           uploadProduct = getUploadUrls(json);
  127.         } catch (HttpException e) {
  128.           HttpURLConnection connection = e.response.connection;
  129.           // check for server error
  130.           if (connection.getResponseCode() >= 500) {
  131.             LOGGER.log(Level.FINE,
  132.                 "[" + getName() + "] get upload urls exception, trying again", e);
  133.             // try again after random back off (1-5 s)
  134.             Thread.sleep(1000 + Math.round(4000 * Math.random()));
  135.             uploadProduct = getUploadUrls(json);
  136.           } else {
  137.             // otherwise propagate exception as usual
  138.             throw e;
  139.           }
  140.         }

  142.         final long afterGetUploadUrls = new Date().getTime();
  143.         LOGGER.fine("[" + getName() + "] get upload urls " + id.toString()
  144.             + " (" + (afterGetUploadUrls - start) + " ms) ");

  146.         // upload contents
  147.         try {
  148.           uploadContents(product, uploadProduct);
  149.         } catch (HttpException e) {
  150.           HttpURLConnection connection = e.response.connection;
  151.           // check for S3 "503 Slow Down" error
  152.           if (
  153.             503 == connection.getResponseCode()
  154.             && "Slow Down".equals(connection.getResponseMessage())
  155.           ) {
  156.             LOGGER.fine("[" + getName() + "] 503 slow down exception, trying again");
  157.             // try again after random back off (1-5 s)
  158.             Thread.sleep(1000 + Math.round(4000 * Math.random()));
  159.             uploadContents(product, uploadProduct);
  160.           } else {
  161.             // otherwise propagate exception as usual
  162.             throw e;
  163.           }
  164.         }

  166.         afterUploadContent = new Date().getTime();
  167.         LOGGER.fine("[" + getName() + "] upload contents " + id.toString()
  168.             + " (" + (afterUploadContent - afterGetUploadUrls) + " ms) ");
  169.       } else {
  170.         afterUploadContent = new Date().getTime();
  171.       }

  173.       try {
  174.         // send product
  175.         sendProduct(json);
  176.       } catch (HttpException e) {
  177.         HttpURLConnection connection = e.response.connection;
  178.         // check for server error
  179.         if (connection.getResponseCode() >= 500) {
  180.           LOGGER.log(Level.FINE,
  181.               "[" + getName() + "] send product exception, trying again", e);
  182.           // try again after random back off (1-5 s)
  183.           Thread.sleep(1000 + Math.round(4000 * Math.random()));
  184.           sendProduct(json);
  185.         } else {
  186.           // otherwise propagate exception as usual
  187.           throw e;
  188.         }
  189.       }

  191.       final long afterSendProduct = new Date().getTime();
  192.       LOGGER.fine("[" + getName() + "] send product " + id.toString()
  193.           + " (" + (afterSendProduct - afterUploadContent) + " ms) ");
  194.     } catch (ProductAlreadySentException pase) {
  195.       // hub already has product
  196.       LOGGER.info("[" + getName() + "] hub already has product");
  197.     } catch (Exception e) {
  198.       LOGGER.log(Level.WARNING, "Exception sending product " + id.toString(), e);
  199.       throw e;
  200.     } finally {
  201.       final long end = new Date().getTime();
  202.       LOGGER.info("[" + getName() + "] send product total " + id.toString()
  203.           + " (" + (end - start) + " ms) ");
  204.     }
  205.   }

  207.   /**
  208.    * Get content upload urls.
  209.    *
  210.    * @param json product in json format.
  211.    * @return product with content urls set to upload URLs.
  212.    * @throws Exception Exception
  213.    */
  214.   protected Product getUploadUrls(final JsonObject json) throws Exception {
  215.     final URL url = new URL(hubUrl, "get_upload_urls");
  216.     final HttpResponse result = postProductJson(url, json);
  217.     final int responseCode = result.connection.getResponseCode();

  219.     // check for errors
  220.     if (responseCode == 401) {
  221.       throw new InvalidSignatureException("Invalid product signature");
  222.     } else if (responseCode == 409) {
  223.       throw new ProductAlreadySentException();
  224.     } else if (responseCode != 200) {
  225.       throw new HttpException(result, "Error getting upload urls");
  226.     }

  228.     // successful response is json object with "products" property
  229.     // that is product with upload urls for contents.
  230.     final JsonObject getUploadUrlsResponse = result.getJsonObject();
  231.     final Product product = new JsonProduct().getProduct(
  232.         getUploadUrlsResponse.getJsonObject("product"));
  233.     return product;
  234.   }

  236.   /**
  237.    * Post product json to a hub url.
  238.    *
  239.    * This is a HTTP POST method,
  240.    * with a JSON content body with a "product" property with the product.
  241.    *
  242.    * @param url url of connection
  243.    * @param product product in json format
  244.    * @return new HTTP POST response
  245.    * @throws Exception Exception
  246.    */
  247.   protected HttpResponse postProductJson(final URL url, final JsonObject product) throws Exception {
  248.     // send as attribute, for extensibility
  249.     final JsonObject json = Json.createObjectBuilder().add("product", product).build();
  250.     HttpURLConnection connection = (HttpURLConnection) url.openConnection();
  251.     connection.setConnectTimeout(connectTimeout);
  252.     connection.setReadTimeout(readTimeout);
  253.     connection.setDoOutput(true);
  254.     connection.setRequestMethod("POST");
  255.     connection.setRequestProperty("Content-Type", "application/json");
  256.     try (final OutputStream out = connection.getOutputStream()) {
  257.       out.write(json.toString().getBytes());
  258.     }
  259.     return new HttpResponse(connection);
  260.   }

  262.   /**
  263.    * Send product after content has been uploaded.
  264.    *
  265.    * @param json product in json format.
  266.    * @return product with content urls pointing to hub.
  267.    * @throws Exception Exception
  268.    */
  269.   protected Product sendProduct(final JsonObject json) throws Exception {
  270.     // send request
  271.     final URL url = new URL(hubUrl, "send_product");
  272.     final HttpResponse result = postProductJson(url, json);
  273.     int responseCode = result.connection.getResponseCode();

  275.     // check for errors
  276.     if (responseCode == 401) {
  277.       throw new InvalidSignatureException("Invalid product signature");
  278.     } else if (responseCode == 409) {
  279.       throw new ProductAlreadySentException();
  280.     } else if (responseCode == 422) {
  281.       throw new HttpException(result,
  282.           "Content validation errors: " + result.getJsonObject().toString());
  283.     } else if (result.connection.getResponseCode() != 200) {
  284.       throw new HttpException(result, "Error sending product");
  285.     }

  287.     // successful response is json object with "notification" property
  288.     // that has "created" and "product" properties with hub urls for contents.
  289.     final JsonObject sendProductResponse = result.getJsonObject();
  290.     final JsonObject notification = sendProductResponse.getJsonObject("notification");
  291.     final Product product = new JsonProduct().getProduct(notification.getJsonObject("product"));
  292.     // json response also has "notification_id" property of broadcast that was sent.
  293.     String notificationId = null;
  294.     if (!sendProductResponse.isNull("notification_id")) {
  295.       notificationId = sendProductResponse.getString("notification_id");
  296.     }
  297.     LOGGER.fine("[" + getName() + "] notification id "
  298.         + notificationId + " " + product.getId().toString());
  299.     return product;
  300.   }

  302.   /**
  303.    * Upload content to a signed url.
  304.    *
  305.    * @param path content path.
  306.    * @param content content to upload.
  307.    * @param signedUrl url where content should be uploaded.
  308.    * @return HTTP result
  309.    * @throws Exception Exception
  310.    */
  311.   protected HttpResponse uploadContent(final String path, final Content content, final URL signedUrl)
  312.       throws Exception {
  313.     final long start = new Date().getTime();
  314.     final HttpURLConnection connection = (HttpURLConnection) signedUrl.openConnection();
  315.     connection.setDoOutput(true);
  316.     connection.setConnectTimeout(connectTimeout);
  317.     connection.setReadTimeout(readTimeout);
  318.     // these values are part of signed url and are required
  319.     connection.setRequestMethod("PUT");
  320.     connection.addRequestProperty("Content-Length", content.getLength().toString());
  321.     connection.addRequestProperty("Content-Type", content.getContentType());
  322.     connection.addRequestProperty(
  323.         "x-amz-meta-modified", XmlUtils.formatDate(content.getLastModified()));
  324.     connection.addRequestProperty("x-amz-meta-sha256", content.getSha256());

  326.     // send content
  327.     try (final InputStream in = content.getInputStream();
  328.         final OutputStream out = connection.getOutputStream()) {
  329.       StreamUtils.transferStream(in, out);
  330.     }
  331.     final HttpResponse result = new HttpResponse(connection);
  332.     final long elapsed = (new Date().getTime() - start);
  333.     if (connection.getResponseCode() != 200) {
  334.       throw new HttpException(result, "Error uploading content "
  335.           + path + " (" + elapsed + " ms)");
  336.     }
  337.     LOGGER.finer(
  338.         "["
  339.             + getName()
  340.             + "] uploaded content " + path + " (size= "
  341.             + content.getLength()
  342.             + " bytes) (time= "
  343.             + elapsed
  344.             + " ms)");
  345.     return result;
  346.   }

  348.   /**
  349.    * Upload product contents.
  350.    *
  351.    * Runs uploads in parallel using a parallel stream.
  352.    *
  353.    * This can be called within a custom ForkJoinPool to use a non-default pool,
  354.    * the default pool is shared by the process and based on number of available
  355.    * cores.
  356.    *
  357.    * @param product product to upload.
  358.    * @param uploadProduct product with signed upload urls.
  359.    * @return upload results
  360.    * @throws Exception if any upload errors occur
  361.    */
  362.   protected Map<String, HttpResponse> uploadContents(
  363.       final Product product, final Product uploadProduct) throws Exception {
  364.     // collect results
  365.     final ConcurrentHashMap<String, HttpResponse> uploadResults =
  366.         new ConcurrentHashMap<String, HttpResponse>();
  367.     final ConcurrentHashMap<String, Exception> uploadExceptions =
  368.         new ConcurrentHashMap<String, Exception>();
  369.     // upload contents in parallel
  370.     uploadProduct.getContents().keySet().parallelStream()
  371.         .filter(path -> !"".equals(path))
  372.         .forEach(
  373.             path -> {
  374.               try {
  375.                 Content uploadContent = uploadProduct.getContents().get(path);
  376.                 if (!(uploadContent instanceof URLContent)) {
  377.                   throw new IllegalStateException(
  378.                       "Expected URLContent for " + product.getId().toString()
  379.                       + " path '" + path + "' but got " + uploadContent);
  380.                 }
  381.                 uploadResults.put(
  382.                     path,
  383.                     uploadContent(
  384.                         path,
  385.                         product.getContents().get(path),
  386.                         ((URLContent) uploadContent).getURL()));
  387.               } catch (Exception e) {
  388.                 uploadExceptions.put(path, e);
  389.               }
  390.             });
  391.     if (uploadExceptions.size() > 0) {
  392.       Exception e = null;
  393.       // log all
  394.       for (final String path : uploadExceptions.keySet()) {
  395.         e = uploadExceptions.get(path);
  396.         LOGGER.log(Level.WARNING, "Exception uploading content " + path, e);
  397.       }
  398.       // throw last
  399.       throw e;
  400.     }
  401.     return uploadResults;
  402.   }
  403.   /** Getter for signProducts
  404.    * @return boolean
  405.    */
  406.   public boolean getSignProducts() {
  407.     return signProducts;
  408.   }

  410.   /** Setter for signProducts
  411.    * @param sign boolean
  412.    */
  413.   public void setSignProducts(final boolean sign) {
  414.     this.signProducts = sign;
  415.   }

  417.   /** getter for privateKey
  418.    * @return privateKey
  419.    */
  420.   public PrivateKey getPrivateKey() {
  421.     return privateKey;
  422.   }

  424.   /** setting for privateKey
  425.    * @param key PrivateKey
  426.    */
  427.   public void setPrivateKey(final PrivateKey key) {
  428.     this.privateKey = key;
  429.   }

  431. }
Created with JaCoCo 0.8.8.202204050719