mongodb/mongo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
master
mongo/buildscripts/util/download_utils.py
Sean Lyons 2040f727a4 SERVER-115817 Avoid showing 403s for downloads from public buckets (#45520) 
GitOrigin-RevId: a8966e3f71a3fac211201a618477a0ad37bffb92
2025-12-19 16:41:55 +00:00

80 lines
2.7 KiB
Python
Raw Permalink Blame History

import os
import shutil
import sys
from urllib.parse import urlparse
import boto3
import botocore.session
import requests
def get_s3_client(**client_kwargs):
botocore.session.Session()
if sys.platform in ("win32", "cygwin"):
# These overriden values can be found here
# https://github.com/boto/botocore/blob/13468bc9d8923eccd0816ce2dd9cd8de5a6f6e0e/botocore/configprovider.py#L49C7-L49C7
# This is due to the backwards breaking changed python introduced https://bugs.python.org/issue36264
botocore_session = botocore.session.Session(
session_vars={
"config_file": (
None,
"AWS_CONFIG_FILE",
os.path.join(os.environ["HOME"], ".aws", "config"),
None,
),
"credentials_file": (
None,
"AWS_SHARED_CREDENTIALS_FILE",
os.path.join(os.environ["HOME"], ".aws", "credentials"),
None,
),
}
)
boto3.setup_default_session(botocore_session=botocore_session)
return boto3.client("s3", **client_kwargs)
def extract_s3_bucket_key(url: str) -> tuple[str, str]:
"""
Extracts the S3 bucket name and object key from an HTTP(s) S3 URL.
Supports both:
- https://bucket.s3.amazonaws.com/key/…
- https://bucket.s3.<region>.amazonaws.com/key/…
Returns:
(bucket, key)
"""
parsed = urlparse(url)
# Hostname labels, e.g. ["bucket","s3","us-east-1","amazonaws","com"]
bucket = parsed.hostname.split(".")[0]
key = parsed.path.lstrip("/")
return bucket, key
def download_from_s3_with_requests(url, output_file, raise_on_error=False):
with requests.get(url, stream=True) as reader:
if raise_on_error:
reader.raise_for_status()
with open(output_file, "wb") as file_handle:
shutil.copyfileobj(reader.raw, file_handle)
def download_from_s3_with_boto(url, output_file):
bucket_name, object_key = extract_s3_bucket_key(url)
try:
s3_client = get_s3_client()
s3_client.download_file(bucket_name, object_key, output_file)
return
except botocore.exceptions.ClientError as e:
error_code = e.response.get("Error", {}).get("Code", "")
# 403 Forbidden means credentials lack permission, even for public buckets - try unsigned
if error_code == "403":
s3_client = get_s3_client(
config=botocore.client.Config(signature_version=botocore.UNSIGNED)
)
s3_client.download_file(bucket_name, object_key, output_file)
else:
raise
Reference in New Issue View Git Blame Copy Permalink