feat: support signature configuration for all environment

Author: yndu13

.github/workflows/pop_csharp.yml

@@ -12,14 +12,14 @@ defaults:
 jobs:
   build:
 
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-20.04
 
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v4
     - name: Setup .NET Core
-      uses: actions/setup-dotnet@v1
+      uses: actions/setup-dotnet@v4
       with:
-        dotnet-version: 2.2.207
+        dotnet-version: '2.x'
     - name: install altcover
       run: cd core/ && dotnet tool install --global altcover.visualizer --version 8.6.14
     - name: Install dependencies

.github/workflows/pop_java.yml

@@ -20,7 +20,7 @@ jobs:
       matrix:
         # test against latest update of each major Java version, as well as specific updates of LTS versions:
         # 20, 21还不支持，报错是Source option 7 is no longer supported. Use 8 or later.
-        java: [7, 8, 9, 11, 12, 13, 14, 15, 16, 17, 18, 19]
+        java: [8, 11, 17]
       fail-fast: false
 
     steps:

.github/workflows/pop_python.yml

@@ -24,11 +24,7 @@ jobs:
       with:
         python-version: ${{ matrix.python-version }}
     - name: Install dependencies
-      run: pip install pytest==6.2.5 coverage==5.5 importlib-metadata==1.7.0 zipp==2.2.1 typing-extensions==3.10.0.2 && python setup.py install
-      if: matrix.python-version == '3.7'
-    - name: Install dependencies
-      run: python -m pip install setuptools && python setup.py install && pip install pytest coverage
-      if: matrix.python-version != '3.7'
+      run: pip install setuptools urllib3==1.26.20 alibabacloud-tea coverage pytest alibabacloud-credentials==0.3.6 && python setup.py install
     - name: Test with unittest
       run: |
         coverage run --source="./alibabacloud_tea_util" -m pytest tests/test_*

alibabacloud-gateway-pop/csharp/core/Client.cs

@@ -14,27 +14,53 @@ namespace AlibabaCloud.GatewayPop
 {
     public class Client : AlibabaCloud.GatewaySpi.Client
     {
+        protected string _endpointSuffix;
+        protected string _signatureTypePrefix;
+        protected string _signPrefix;
         protected string _sha256;
         protected string _sm3;
 
         public Client(): base()
         {
-            this._sha256 = "ACS4-HMAC-SHA256";
-            this._sm3 = "ACS4-HMAC-SM3";
+            // CLOUD4-
+            this._signatureTypePrefix = "ACS4-";
+            // cloud_v4
+            this._signPrefix = "aliyun_v4";
+            this._endpointSuffix = "aliyuncs.com";
+            this._sha256 = "" + _signatureTypePrefix + "HMAC-SHA256";
+            this._sm3 = "" + _signatureTypePrefix + "HMAC-SM3";
         }
 
 
         public void ModifyConfiguration(AlibabaCloud.GatewaySpi.Models.InterceptorContext context, AlibabaCloud.GatewaySpi.Models.AttributeMap attributeMap)
         {
             AlibabaCloud.GatewaySpi.Models.InterceptorContext.InterceptorContextRequest request = context.Request;
             AlibabaCloud.GatewaySpi.Models.InterceptorContext.InterceptorContextConfiguration config = context.Configuration;
+            Dictionary<string, string> attributes = attributeMap.Key;
+            if (!AlibabaCloud.TeaUtil.Common.IsUnset(attributes))
+            {
+                this._signatureTypePrefix = attributes.Get("signatureTypePrefix");
+                this._signPrefix = attributes.Get("signPrefix");
+                this._endpointSuffix = attributes.Get("endpointSuffix");
+                this._sha256 = "" + _signatureTypePrefix + "HMAC-SHA256";
+                this._sm3 = "" + _signatureTypePrefix + "HMAC-SM3";
+            }
             config.Endpoint = GetEndpoint(request.ProductId, config.RegionId, config.EndpointRule, config.Network, config.Suffix, config.EndpointMap, config.Endpoint);
         }
 
         public async Task ModifyConfigurationAsync(AlibabaCloud.GatewaySpi.Models.InterceptorContext context, AlibabaCloud.GatewaySpi.Models.AttributeMap attributeMap)
         {
             AlibabaCloud.GatewaySpi.Models.InterceptorContext.InterceptorContextRequest request = context.Request;
             AlibabaCloud.GatewaySpi.Models.InterceptorContext.InterceptorContextConfiguration config = context.Configuration;
+            Dictionary<string, string> attributes = attributeMap.Key;
+            if (!AlibabaCloud.TeaUtil.Common.IsUnset(attributes))
+            {
+                this._signatureTypePrefix = attributes.Get("signatureTypePrefix");
+                this._signPrefix = attributes.Get("signPrefix");
+                this._endpointSuffix = attributes.Get("endpointSuffix");
+                this._sha256 = "" + _signatureTypePrefix + "HMAC-SHA256";
+                this._sm3 = "" + _signatureTypePrefix + "HMAC-SM3";
+            }
             config.Endpoint = GetEndpoint(request.ProductId, config.RegionId, config.EndpointRule, config.Network, config.Suffix, config.EndpointMap, config.Endpoint);
         }
 
@@ -106,26 +132,37 @@ public void ModifyRequest(AlibabaCloud.GatewaySpi.Models.InterceptorContext cont
                         {"message", "'config.credential' can not be unset"},
                     });
                 }
-                string authType = credential.GetType();
+                Aliyun.Credentials.Models.CredentialModel credentialModel = credential.GetCredential();
+                if (!AlibabaCloud.TeaUtil.Common.Empty(credentialModel.ProviderName))
+                {
+                    request.Headers["x-acs-credentials-provider"] = credentialModel.ProviderName;
+                }
+                string authType = credentialModel.Type;
                 if (AlibabaCloud.TeaUtil.Common.EqualString(authType, "bearer"))
                 {
                     string bearerToken = credential.GetBearerToken();
                     request.Headers["x-acs-bearer-token"] = bearerToken;
+                    request.Headers["x-acs-signature-type"] = "BEARERTOKEN";
                     request.Headers["Authorization"] = "Bearer " + bearerToken;
                 }
+                else if (AlibabaCloud.TeaUtil.Common.EqualString(authType, "id_token"))
+                {
+                    string idToken = credentialModel.SecurityToken;
+                    request.Headers["x-acs-zero-trust-idtoken"] = idToken;
+                }
                 else
                 {
-                    string accessKeyId = credential.GetAccessKeyId();
-                    string accessKeySecret = credential.GetAccessKeySecret();
-                    string securityToken = credential.GetSecurityToken();
+                    string accessKeyId = credentialModel.AccessKeyId;
+                    string accessKeySecret = credentialModel.AccessKeySecret;
+                    string securityToken = credentialModel.SecurityToken;
                     if (!AlibabaCloud.TeaUtil.Common.Empty(securityToken))
                     {
                         request.Headers["x-acs-accesskey-id"] = accessKeyId;
                         request.Headers["x-acs-security-token"] = securityToken;
                     }
                     string dateNew = AlibabaCloud.DarabonbaString.StringUtil.SubString(date, 0, 10);
                     dateNew = AlibabaCloud.DarabonbaString.StringUtil.Replace(dateNew, "-", "", null);
-                    string region = GetRegion(request.ProductId, config.Endpoint);
+                    string region = GetRegion(request.ProductId, config.Endpoint, config.RegionId);
                     byte[] signingkey = GetSigningkey(signatureAlgorithm, accessKeySecret, request.ProductId, region, dateNew);
                     request.Headers["Authorization"] = GetAuthorization(request.Pathname, request.Method, request.Query, request.Headers, signatureAlgorithm, hashedRequestPayload, accessKeyId, signingkey, request.ProductId, region, dateNew);
                 }
@@ -200,26 +237,37 @@ public async Task ModifyRequestAsync(AlibabaCloud.GatewaySpi.Models.InterceptorC
                         {"message", "'config.credential' can not be unset"},
                     });
                 }
-                string authType = credential.GetType();
+                Aliyun.Credentials.Models.CredentialModel credentialModel = await credential.GetCredentialAsync();
+                if (!AlibabaCloud.TeaUtil.Common.Empty(credentialModel.ProviderName))
+                {
+                    request.Headers["x-acs-credentials-provider"] = credentialModel.ProviderName;
+                }
+                string authType = credentialModel.Type;
                 if (AlibabaCloud.TeaUtil.Common.EqualString(authType, "bearer"))
                 {
                     string bearerToken = credential.GetBearerToken();
                     request.Headers["x-acs-bearer-token"] = bearerToken;
+                    request.Headers["x-acs-signature-type"] = "BEARERTOKEN";
                     request.Headers["Authorization"] = "Bearer " + bearerToken;
                 }
+                else if (AlibabaCloud.TeaUtil.Common.EqualString(authType, "id_token"))
+                {
+                    string idToken = credentialModel.SecurityToken;
+                    request.Headers["x-acs-zero-trust-idtoken"] = idToken;
+                }
                 else
                 {
-                    string accessKeyId = await credential.GetAccessKeyIdAsync();
-                    string accessKeySecret = await credential.GetAccessKeySecretAsync();
-                    string securityToken = await credential.GetSecurityTokenAsync();
+                    string accessKeyId = credentialModel.AccessKeyId;
+                    string accessKeySecret = credentialModel.AccessKeySecret;
+                    string securityToken = credentialModel.SecurityToken;
                     if (!AlibabaCloud.TeaUtil.Common.Empty(securityToken))
                     {
                         request.Headers["x-acs-accesskey-id"] = accessKeyId;
                         request.Headers["x-acs-security-token"] = securityToken;
                     }
                     string dateNew = AlibabaCloud.DarabonbaString.StringUtil.SubString(date, 0, 10);
                     dateNew = AlibabaCloud.DarabonbaString.StringUtil.Replace(dateNew, "-", "", null);
-                    string region = GetRegion(request.ProductId, config.Endpoint);
+                    string region = GetRegion(request.ProductId, config.Endpoint, config.RegionId);
                     byte[] signingkey = await GetSigningkeyAsync(signatureAlgorithm, accessKeySecret, request.ProductId, region, dateNew);
                     request.Headers["Authorization"] = await GetAuthorizationAsync(request.Pathname, request.Method, request.Query, request.Headers, signatureAlgorithm, hashedRequestPayload, accessKeyId, signingkey, request.ProductId, region, dateNew);
                 }
@@ -369,15 +417,15 @@ public string GetAuthorization(string pathname, string method, Dictionary<string
             string signature = GetSignature(pathname, method, query, headers, signatureAlgorithm, payload, signingkey);
             List<string> signedHeaders = GetSignedHeaders(headers);
             string signedHeadersStr = AlibabaCloud.DarabonbaArray.ArrayUtil.Join(signedHeaders, ";");
-            return "" + signatureAlgorithm + " Credential=" + ak + "/" + date + "/" + region + "/" + product + "/aliyun_v4_request,SignedHeaders=" + signedHeadersStr + ",Signature=" + signature;
+            return "" + signatureAlgorithm + " Credential=" + ak + "/" + date + "/" + region + "/" + product + "/" + _signPrefix + "_request,SignedHeaders=" + signedHeadersStr + ",Signature=" + signature;
         }
 
         public async Task<string> GetAuthorizationAsync(string pathname, string method, Dictionary<string, string> query, Dictionary<string, string> headers, string signatureAlgorithm, string payload, string ak, byte[] signingkey, string product, string region, string date)
         {
             string signature = await GetSignatureAsync(pathname, method, query, headers, signatureAlgorithm, payload, signingkey);
             List<string> signedHeaders = await GetSignedHeadersAsync(headers);
             string signedHeadersStr = AlibabaCloud.DarabonbaArray.ArrayUtil.Join(signedHeaders, ";");
-            return "" + signatureAlgorithm + " Credential=" + ak + "/" + date + "/" + region + "/" + product + "/aliyun_v4_request,SignedHeaders=" + signedHeadersStr + ",Signature=" + signature;
+            return "" + signatureAlgorithm + " Credential=" + ak + "/" + date + "/" + region + "/" + product + "/" + _signPrefix + "_request,SignedHeaders=" + signedHeadersStr + ",Signature=" + signature;
         }
 
         public string GetSignature(string pathname, string method, Dictionary<string, string> query, Dictionary<string, string> headers, string signatureAlgorithm, string payload, byte[] signingkey)
@@ -436,7 +484,7 @@ public async Task<string> GetSignatureAsync(string pathname, string method, Dict
 
         public byte[] GetSigningkey(string signatureAlgorithm, string secret, string product, string region, string date)
         {
-            string sc1 = "aliyun_v4" + secret;
+            string sc1 = "" + _signPrefix + secret;
             byte[] sc2 = AlibabaCloud.TeaUtil.Common.ToBytes("");
             if (AlibabaCloud.TeaUtil.Common.EqualString(signatureAlgorithm, _sha256))
             {
@@ -467,18 +515,18 @@ public byte[] GetSigningkey(string signatureAlgorithm, string secret, string pro
             byte[] hmac = AlibabaCloud.TeaUtil.Common.ToBytes("");
             if (AlibabaCloud.TeaUtil.Common.EqualString(signatureAlgorithm, _sha256))
             {
-                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSHA256SignByBytes("aliyun_v4_request", sc4);
+                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSHA256SignByBytes("" + _signPrefix + "_request", sc4);
             }
             else if (AlibabaCloud.TeaUtil.Common.EqualString(signatureAlgorithm, _sm3))
             {
-                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSM3SignByBytes("aliyun_v4_request", sc4);
+                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSM3SignByBytes("" + _signPrefix + "_request", sc4);
             }
             return hmac;
         }
 
         public async Task<byte[]> GetSigningkeyAsync(string signatureAlgorithm, string secret, string product, string region, string date)
         {
-            string sc1 = "aliyun_v4" + secret;
+            string sc1 = "" + _signPrefix + secret;
             byte[] sc2 = AlibabaCloud.TeaUtil.Common.ToBytes("");
             if (AlibabaCloud.TeaUtil.Common.EqualString(signatureAlgorithm, _sha256))
             {
@@ -509,25 +557,29 @@ public async Task<byte[]> GetSigningkeyAsync(string signatureAlgorithm, string s
             byte[] hmac = AlibabaCloud.TeaUtil.Common.ToBytes("");
             if (AlibabaCloud.TeaUtil.Common.EqualString(signatureAlgorithm, _sha256))
             {
-                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSHA256SignByBytes("aliyun_v4_request", sc4);
+                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSHA256SignByBytes("" + _signPrefix + "_request", sc4);
             }
             else if (AlibabaCloud.TeaUtil.Common.EqualString(signatureAlgorithm, _sm3))
             {
-                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSM3SignByBytes("aliyun_v4_request", sc4);
+                hmac = AlibabaCloud.DarabonbaSignatureUtil.Signer.HmacSM3SignByBytes("" + _signPrefix + "_request", sc4);
             }
             return hmac;
         }
 
-        public string GetRegion(string product, string endpoint)
+        public string GetRegion(string product, string endpoint, string regionId)
         {
+            if (!AlibabaCloud.TeaUtil.Common.Empty(regionId))
+            {
+                return regionId;
+            }
             string region = "center";
             if (AlibabaCloud.TeaUtil.Common.Empty(product) || AlibabaCloud.TeaUtil.Common.Empty(endpoint))
             {
                 return region;
             }
             List<string> strs = AlibabaCloud.DarabonbaString.StringUtil.Split(endpoint, ":", null);
             string withoutPort = strs[0];
-            string preRegion = AlibabaCloud.DarabonbaString.StringUtil.Replace(withoutPort, ".aliyuncs.com", "", null);
+            string preRegion = AlibabaCloud.DarabonbaString.StringUtil.Replace(withoutPort, "." + _endpointSuffix, "", null);
             List<string> nodes = AlibabaCloud.DarabonbaString.StringUtil.Split(preRegion, ".", null);
             if (AlibabaCloud.TeaUtil.Common.EqualNumber(AlibabaCloud.DarabonbaArray.ArrayUtil.Size(nodes), 2))
             {

alibabacloud-gateway-pop/csharp/core/Properties/AssemblyInfo.cs

@@ -29,5 +29,5 @@
 //      Build Number
 //      Revision
 //
-[assembly: AssemblyVersion("0.0.5.0")]
-[assembly: AssemblyFileVersion("0.0.5.0")]
+[assembly: AssemblyVersion("0.0.6.0")]
+[assembly: AssemblyFileVersion("0.0.6.0")]

alibabacloud-gateway-pop/csharp/core/client.csproj

@@ -41,7 +41,7 @@
       <IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
     </PackageReference>
     <PackageReference Include="AlibabaCloud.GatewaySpi" Version="0.0.3"/>
-    <PackageReference Include="Aliyun.Credentials" Version="1.4.2"/>
+    <PackageReference Include="Aliyun.Credentials" Version="1.5.0"/>
     <PackageReference Include="AlibabaCloud.TeaUtil" Version="0.1.19"/>
     <PackageReference Include="AlibabaCloud.OpenApiUtil" Version="1.1.2"/>
     <PackageReference Include="AlibabaCloud.EndpointUtil" Version="0.1.1"/>
@@ -50,6 +50,6 @@
     <PackageReference Include="AlibabaCloud.DarabonbaString" Version="1.0.3"/>
     <PackageReference Include="AlibabaCloud.DarabonbaMap" Version="0.0.2"/>
     <PackageReference Include="AlibabaCloud.DarabonbaArray" Version="0.1.0"/>
-    <PackageReference Include="Tea" Version="1.0.13"/>
+    <PackageReference Include="Tea" Version="1.1.3"/>
   </ItemGroup>
 </Project>