R/http.R
In rstudio/rsconnect: Deploy Docs, Apps, and APIs to 'Posit Connect', 'shinyapps.io', and 'RPubs'
Defines functions
readHttpResponse
parseHttpStatusCode
parseHttpHeader
userAgent
rfc2616Date
signRequestPrivateKey
signatureHeaders
authHeaders
requestCertificate
queryString
buildPath
urlEncode
urlDecode
buildHttpUrl
parseHttpUrl
httpFunction
httpHeaders
httpCookies
httpTrace
httpTraceJson
httpVerbose
PATCH_JSON
PATCH
PUT_JSON
PUT
POST_JSON
POST
DELETE
GET
handleResponse
redirectService
isRedirect
httpRequestWithBody
httpRequest
#' @param authInfo Typically an object created by `accountInfo()` augmented
#' with the `certificate` from the corresponding `serverInfo()`.
#'
#' There are three different fields used for auth:
#' * `secret`: set in `setAccountInfo()`
#' * `private_key`: set in `connectUser()`
#' * `apiKey`: set in `connectApiUser()`
#'
#' @noRd
httpRequest <- function(service,
authInfo,
method,
path,
query,
headers = list(),
timeout = NULL,
error_call = caller_env()) {
storeCookies(service, httpCookies())
path <- buildPath(service$path, path, query)
headers <- c(headers, authHeaders(authInfo, method, path), httpHeaders())
certificate <- requestCertificate(service$protocol, authInfo$certificate)
# perform request
http <- httpFunction()
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = method,
path = path,
headers = headers,
timeout = timeout,
certificate = certificate
)
while (isRedirect(httpResponse$status)) {
service <- redirectService(service, httpResponse$location)
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = method,
path = service$path,
headers = headers,
timeout = timeout,
certificate = certificate
)
}
handleResponse(httpResponse, error_call = error_call)
}
httpRequestWithBody <- function(service,
authInfo,
method,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list(),
error_call = caller_env()) {
if ((is.null(file) && is.null(content))) {
stop("You must specify either the file or content parameter.")
}
if ((!is.null(file) && !is.null(content))) {
stop("You must specify either the file or content parameter but not both.")
}
# if we have content then write it to a temp file before posting
if (!is.null(content)) {
file <- tempfile()
writeChar(content, file, eos = NULL, useBytes = TRUE)
}
storeCookies(service, httpCookies())
path <- buildPath(service$path, path, query)
headers <- c(headers, httpHeaders())
authed_headers <- c(headers, authHeaders(authInfo, method, path, file))
certificate <- requestCertificate(service$protocol, authInfo$certificate)
# perform request
http <- httpFunction()
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = method,
path = path,
headers = authed_headers,
contentType = contentType,
contentFile = file,
certificate = certificate
)
while (isRedirect(httpResponse$status)) {
# This is a simplification of the spec, since we should preserve
# the method for 307 and 308, but that's unlikely to arise for our apps
# https://www.rfc-editor.org/rfc/rfc9110.html#name-redirection-3xx
service <- redirectService(service, httpResponse$location)
authed_headers <- c(headers, authHeaders(authInfo, "GET", service$path))
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = "GET",
path = service$path,
headers = authed_headers,
certificate = certificate
)
httpResponse
}
handleResponse(httpResponse, error_call = error_call)
}
isRedirect <- function(status) {
status %in% c(301, 302, 307, 308)
}
redirectService <- function(service, location) {
if (grepl("^/", location)) {
service$path <- location
service
} else {
parseHttpUrl(location)
}
}
handleResponse <- function(response, error_call = caller_env()) {
url <- buildHttpUrl(response$req)
reportError <- function(msg) {
cli::cli_abort(
c("<{url}> failed with HTTP status {response$status}", msg),
class = c(paste0("rsconnect_http_", response$status), "rsconnect_http"),
call = error_call
)
}
if (isContentType(response$contentType, "application/json")) {
# parse json responses
if (nzchar(response$content)) {
json <- jsonlite::fromJSON(response$content, simplifyVector = FALSE)
} else {
json <- list()
}
if (response$status %in% 200:399) {
out <- json
} else if (!is.null(json$error)) {
reportError(unlist(json$error))
} else {
reportError(paste("Unexpected json response:", response$content))
}
} else if (isContentType(response$contentType, "text/html")) {
# extract body of html responses
body <- regexExtract(".*?<body>(.*?)</body>.*", response$content)
if (response$status >= 200 && response$status < 400) {
# Good response, return the body if we have one, or the content if not
if (!is.null(body)) {
out <- body
} else {
out <- response$content
}
} else {
# Error response
if (!is.null(body)) {
reportError(body)
} else {
reportError(response$content)
}
}
} else {
# otherwise just dump the whole thing
if (response$status %in% 200:399) {
out <- response$content
} else {
reportError(response$content)
}
}
attr(out, "httpContentType") <- response$contentType
attr(out, "httpUrl") <- url
out
}
# Wrappers for HTTP methods -----------------------------------------------
GET <- function(service,
authInfo,
path,
query = NULL,
headers = list(),
timeout = NULL) {
httpRequest(service, authInfo, "GET", path, query, headers, timeout)
}
DELETE <- function(service,
authInfo,
path,
query = NULL,
headers = list()) {
httpRequest(service, authInfo, "DELETE", path, query, headers)
}
POST <- function(service,
authInfo,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list()) {
# check if the request needs a body
if ((is.null(file) && is.null(content))) {
# no file or content, don't include a body with the request
httpRequest(service, authInfo, "POST", path, query, headers)
} else {
# include the request's data in the body
httpRequestWithBody(
service = service,
authInfo = authInfo,
method = "POST",
path = path,
query = query,
contentType = contentType,
file = file,
content = content,
headers = headers
)
}
}
POST_JSON <- function(service,
authInfo,
path,
json,
query = NULL,
headers = list()) {
POST(
service = service,
authInfo = authInfo,
path = path,
query = query,
contentType = "application/json",
content = toJSON(json),
headers = headers
)
}
PUT <- function(service,
authInfo,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list()) {
httpRequestWithBody(
service = service,
authInfo = authInfo,
method = "PUT",
path = path,
query = query,
contentType = contentType,
file = file,
content = content,
headers = headers
)
}
PUT_JSON <- function(service,
authInfo,
path,
json,
query = NULL,
headers = list()) {
PUT(
service = service,
authInfo = authInfo,
path = path,
query = query,
contentType = "application/json",
content = toJSON(json),
headers = headers
)
}
PATCH <- function(service,
authInfo,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list()) {
httpRequestWithBody(
service = service,
authInfo = authInfo,
method = "PATCH",
path = path,
query = query,
contentType = contentType,
file = file,
content = content,
headers = headers
)
}
PATCH_JSON <- function(service,
authInfo,
path,
json,
query = NULL,
headers = list()) {
PATCH(
service = service,
authInfo = authInfo,
path = path,
query = query,
contentType = "application/json",
content = toJSON(json),
headers = headers
)
}
# User options ------------------------------------------------------------
httpVerbose <- function() {
getOption("rsconnect.http.verbose", FALSE)
}
httpTraceJson <- function() {
getOption("rsconnect.http.trace.json", FALSE)
}
httpTrace <- function(method, path, time) {
if (getOption("rsconnect.http.trace", FALSE)) {
cat(method, " ", path, " ", as.integer(time[["elapsed"]] * 1000), "ms\n",
sep = ""
)
}
}
httpCookies <- function() {
getOption("rsconnect.http.cookies", character())
}
httpHeaders <- function() {
getOption("rsconnect.http.headers", character())
}
httpFunction <- function() {
httpType <- getOption("rsconnect.http", "libcurl")
if (is_string(httpType) && httpType != "libcurl") {
lifecycle::deprecate_warn(
"1.0.0",
I("The `rsconnect.http` option"),
details = c(
"It should no longer be necessary to set this option",
"If the default http handler doesn't work for you, please file an issue at <https://github.com/rstudio/rsconnect/issues>"
)
)
}
if (identical("libcurl", httpType)) {
httpLibCurl
} else if (identical("rcurl", httpType)) {
httpRCurl
} else if (identical("curl", httpType)) {
httpCurl
} else if (identical("internal", httpType)) {
httpInternal
} else if (is.function(httpType)) {
httpType
} else {
stop(paste(
"Invalid http option specified:", httpType,
". Valid values are libcurl, rcurl, curl, and internal"
))
}
}
# URL manipulation --------------------------------------------------------
parseHttpUrl <- function(urlText) {
matches <- regexec("(http|https)://([^:/#?]+)(?::(\\d+))?(.*)", urlText)
components <- regmatches(urlText, matches)[[1]]
if (length(components) == 0) {
stop("Invalid url: ", urlText)
}
url <- list()
url$protocol <- components[[2]]
url$host <- components[[3]]
url$port <- components[[4]]
url$path <- components[[5]]
url
}
buildHttpUrl <- function(x) {
colon <- if (!is.null(x$port) && nzchar(x$port)) ":"
paste0(x$protocol, "://", x$host, colon, x$port, x$path)
}
urlDecode <- function(x) {
curl::curl_unescape(x)
}
urlEncode <- function(x) {
if (inherits(x, "AsIs")) {
return(x)
}
RCurl::curlEscape(x)
}
buildPath <- function(apiPath, path, query = NULL) {
# prepend the service path
url <- paste(apiPath, path, sep = "")
# append the query
if (!is.null(query)) {
# URL encode query args
query <- utils::URLencode(query)
url <- paste(url, "?", query, sep = "")
}
url
}
queryString <- function(elements) {
stopifnot(is.list(elements))
elements <- elements[!sapply(elements, is.null)]
names <- curl::curl_escape(names(elements))
values <- vapply(elements, urlEncode, character(1))
if (length(elements) > 0) {
result <- paste0(names, "=", values, collapse = "&")
} else {
result <- ""
}
return(result)
}
# Auth --------------------------------------------------------------------
requestCertificate <- function(protocol, certificate = NULL) {
if (identical(protocol, "https")) {
createCertificateFile(certificate)
} else {
NULL
}
}
authHeaders <- function(authInfo, method, path, file = NULL) {
if (!is.null(authInfo$secret) || !is.null(authInfo$private_key)) {
signatureHeaders(authInfo, method, path, file)
} else if (!is.null(authInfo$apiKey)) {
list(`Authorization` = paste("Key", authInfo$apiKey))
} else {
# The value doesn't actually matter here, but the header needs to be set.
list(`X-Auth-Token` = "anonymous-access")
}
}
# https://github.com/rstudio/connect/wiki/token-authentication#request-signing-rsconnect
signatureHeaders <- function(authInfo, method, path, file = NULL) {
# headers to return
headers <- list()
# remove query string from path if necessary
path <- strsplit(path, "?", fixed = TRUE)[[1]][[1]]
# generate date
date <- rfc2616Date()
if (!is.null(authInfo$secret)) {
# the content hash is a string of hex characters when using secret.
md5 <- fileMD5(file)
# build canonical request
canonicalRequest <- paste(method, path, date, md5, sep = "\n")
# sign request using shared secret
decodedSecret <- openssl::base64_decode(authInfo$secret)
hmac <- openssl::sha256(canonicalRequest, key = decodedSecret)
signature <- paste(openssl::base64_encode(hmac), "; version=1", sep = "")
} else if (!is.null(authInfo$private_key)) {
# the raw content hash is base64 encoded hex values when using private key.
md5 <- openssl::base64_encode(fileMD5(file, raw = TRUE))
# build canonical request
canonicalRequest <- paste(method, path, date, md5, sep = "\n")
# sign request using local private key
private_key <- openssl::read_key(
openssl::base64_decode(authInfo$private_key),
der = TRUE
)
signature <- signRequestPrivateKey(private_key, canonicalRequest)
} else {
stop("can't sign request: no shared secret or private key")
}
# return headers
headers$Date <- date
headers$`X-Auth-Token` <- authInfo$token
headers$`X-Auth-Signature` <- signature
headers$`X-Content-Checksum` <- md5
headers
}
signRequestPrivateKey <- function(private_key, canonicalRequest) {
# convert key into PKI format for signing, note this only accepts RSA, but
# that's what rsconnect generates already
pem <- openssl::write_pem(private_key)
pem_lines <- readLines(textConnection(pem))
pki_key <- PKI::PKI.load.key(pem_lines, format = "PEM")
# use sha1 digest and then sign. digest and PKI avoid using system openssl which
# can be problematic in strict FIPS environments
digested <- digest::digest(charToRaw(canonicalRequest), "sha1", serialize = FALSE, raw = TRUE)
rawsig <- PKI::PKI.sign(key = pki_key, digest = digested)
openssl::base64_encode(rawsig)
}
rfc2616Date <- function(time = Sys.time()) {
# set locale to POSIX/C to ensure ASCII date
old <- Sys.getlocale("LC_TIME")
Sys.setlocale("LC_TIME", "C")
defer(Sys.setlocale("LC_TIME", old))
strftime(time, "%a, %d %b %Y %H:%M:%S GMT", tz = "GMT")
}
# Helpers -----------------------------------------------------------------
userAgent <- function() {
paste("rsconnect", packageVersion("rsconnect"), sep = "/")
}
parseHttpHeader <- function(header) {
split <- strsplit(header, ": ")[[1]]
if (length(split) == 2) {
return(list(name = split[1], value = split[2]))
} else {
return(NULL)
}
}
parseHttpStatusCode <- function(statusLine) {
# extract status code; needs to deal with HTTP/1.0, HTTP/1.1, and HTTP/2
statusCode <- regexExtract("HTTP/[0-9]+\\.?[0-9]* ([0-9]+).*", statusLine)
if (is.null(statusCode)) {
return(-1)
} else {
return(as.integer(statusCode))
}
}
# @param request A list containing protocol, host, port, method, and path fields
# @param conn The connection to read the response from.
readHttpResponse <- function(request, conn) {
# read status code
resp <- readLines(conn, 1)
statusCode <- parseHttpStatusCode(resp[1])
# read response headers
contentLength <- NULL
contentType <- NULL
location <- NULL
setCookies <- NULL
repeat {
resp <- readLines(conn, 1)
if (nzchar(resp) == 0) {
break()
}
header <- parseHttpHeader(resp)
if (!is.null(header)) {
name <- tolower(header$name)
if (name == "content-type") {
contentType <- header$value
}
if (name == "content-length") {
contentLength <- as.integer(header$value)
}
if (name == "location") {
location <- header$value
}
if (name == "set-cookie") {
setCookies <- c(setCookies, header$value)
}
}
}
# Store the cookies that were found in the request
storeCookies(request, setCookies)
# read the response content
if (is.null(contentLength)) {
# content length is unknown, so stream remaining text
content <- paste(readLines(con = conn), collapse = "\n")
} else {
# we know the content length, so read exactly that many bytes
content <- rawToChar(readBin(
con = conn, what = "raw",
n = contentLength
))
}
# emit JSON trace if requested
if (httpTraceJson() && identical(contentType, "application/json")) {
cat(paste0(">> ", content, "\n"))
}
# return list
list(
req = request,
status = statusCode,
location = location,
contentType = contentType,
content = content
)
}
rstudio/rsconnect documentation built on June 30, 2024, 1:21 a.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions readHttpResponse parseHttpStatusCode parseHttpHeader userAgent rfc2616Date signRequestPrivateKey signatureHeaders authHeaders requestCertificate queryString buildPath urlEncode urlDecode buildHttpUrl parseHttpUrl httpFunction httpHeaders httpCookies httpTrace httpTraceJson httpVerbose PATCH_JSON PATCH PUT_JSON PUT POST_JSON POST DELETE GET handleResponse redirectService isRedirect httpRequestWithBody httpRequest
#' @param authInfo Typically an object created by `accountInfo()` augmented
#' with the `certificate` from the corresponding `serverInfo()`.
#'
#' There are three different fields used for auth:
#' * `secret`: set in `setAccountInfo()`
#' * `private_key`: set in `connectUser()`
#' * `apiKey`: set in `connectApiUser()`
#'
#' @noRd
httpRequest <- function(service,
authInfo,
method,
path,
query,
headers = list(),
timeout = NULL,
error_call = caller_env()) {
storeCookies(service, httpCookies())
path <- buildPath(service$path, path, query)
headers <- c(headers, authHeaders(authInfo, method, path), httpHeaders())
certificate <- requestCertificate(service$protocol, authInfo$certificate)
# perform request
http <- httpFunction()
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = method,
path = path,
headers = headers,
timeout = timeout,
certificate = certificate
)
while (isRedirect(httpResponse$status)) {
service <- redirectService(service, httpResponse$location)
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = method,
path = service$path,
headers = headers,
timeout = timeout,
certificate = certificate
)
}
handleResponse(httpResponse, error_call = error_call)
}
httpRequestWithBody <- function(service,
authInfo,
method,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list(),
error_call = caller_env()) {
if ((is.null(file) && is.null(content))) {
stop("You must specify either the file or content parameter.")
}
if ((!is.null(file) && !is.null(content))) {
stop("You must specify either the file or content parameter but not both.")
}
# if we have content then write it to a temp file before posting
if (!is.null(content)) {
file <- tempfile()
writeChar(content, file, eos = NULL, useBytes = TRUE)
}
storeCookies(service, httpCookies())
path <- buildPath(service$path, path, query)
headers <- c(headers, httpHeaders())
authed_headers <- c(headers, authHeaders(authInfo, method, path, file))
certificate <- requestCertificate(service$protocol, authInfo$certificate)
# perform request
http <- httpFunction()
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = method,
path = path,
headers = authed_headers,
contentType = contentType,
contentFile = file,
certificate = certificate
)
while (isRedirect(httpResponse$status)) {
# This is a simplification of the spec, since we should preserve
# the method for 307 and 308, but that's unlikely to arise for our apps
# https://www.rfc-editor.org/rfc/rfc9110.html#name-redirection-3xx
service <- redirectService(service, httpResponse$location)
authed_headers <- c(headers, authHeaders(authInfo, "GET", service$path))
httpResponse <- http(
protocol = service$protocol,
host = service$host,
port = service$port,
method = "GET",
path = service$path,
headers = authed_headers,
certificate = certificate
)
httpResponse
}
handleResponse(httpResponse, error_call = error_call)
}
isRedirect <- function(status) {
status %in% c(301, 302, 307, 308)
}
redirectService <- function(service, location) {
if (grepl("^/", location)) {
service$path <- location
service
} else {
parseHttpUrl(location)
}
}
handleResponse <- function(response, error_call = caller_env()) {
url <- buildHttpUrl(response$req)
reportError <- function(msg) {
cli::cli_abort(
c("<{url}> failed with HTTP status {response$status}", msg),
class = c(paste0("rsconnect_http_", response$status), "rsconnect_http"),
call = error_call
)
}
if (isContentType(response$contentType, "application/json")) {
# parse json responses
if (nzchar(response$content)) {
json <- jsonlite::fromJSON(response$content, simplifyVector = FALSE)
} else {
json <- list()
}
if (response$status %in% 200:399) {
out <- json
} else if (!is.null(json$error)) {
reportError(unlist(json$error))
} else {
reportError(paste("Unexpected json response:", response$content))
}
} else if (isContentType(response$contentType, "text/html")) {
# extract body of html responses
body <- regexExtract(".*?<body>(.*?)</body>.*", response$content)
if (response$status >= 200 && response$status < 400) {
# Good response, return the body if we have one, or the content if not
if (!is.null(body)) {
out <- body
} else {
out <- response$content
}
} else {
# Error response
if (!is.null(body)) {
reportError(body)
} else {
reportError(response$content)
}
}
} else {
# otherwise just dump the whole thing
if (response$status %in% 200:399) {
out <- response$content
} else {
reportError(response$content)
}
}
attr(out, "httpContentType") <- response$contentType
attr(out, "httpUrl") <- url
out
}
# Wrappers for HTTP methods -----------------------------------------------
GET <- function(service,
authInfo,
path,
query = NULL,
headers = list(),
timeout = NULL) {
httpRequest(service, authInfo, "GET", path, query, headers, timeout)
}
DELETE <- function(service,
authInfo,
path,
query = NULL,
headers = list()) {
httpRequest(service, authInfo, "DELETE", path, query, headers)
}
POST <- function(service,
authInfo,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list()) {
# check if the request needs a body
if ((is.null(file) && is.null(content))) {
# no file or content, don't include a body with the request
httpRequest(service, authInfo, "POST", path, query, headers)
} else {
# include the request's data in the body
httpRequestWithBody(
service = service,
authInfo = authInfo,
method = "POST",
path = path,
query = query,
contentType = contentType,
file = file,
content = content,
headers = headers
)
}
}
POST_JSON <- function(service,
authInfo,
path,
json,
query = NULL,
headers = list()) {
POST(
service = service,
authInfo = authInfo,
path = path,
query = query,
contentType = "application/json",
content = toJSON(json),
headers = headers
)
}
PUT <- function(service,
authInfo,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list()) {
httpRequestWithBody(
service = service,
authInfo = authInfo,
method = "PUT",
path = path,
query = query,
contentType = contentType,
file = file,
content = content,
headers = headers
)
}
PUT_JSON <- function(service,
authInfo,
path,
json,
query = NULL,
headers = list()) {
PUT(
service = service,
authInfo = authInfo,
path = path,
query = query,
contentType = "application/json",
content = toJSON(json),
headers = headers
)
}
PATCH <- function(service,
authInfo,
path,
query = NULL,
contentType = NULL,
file = NULL,
content = NULL,
headers = list()) {
httpRequestWithBody(
service = service,
authInfo = authInfo,
method = "PATCH",
path = path,
query = query,
contentType = contentType,
file = file,
content = content,
headers = headers
)
}
PATCH_JSON <- function(service,
authInfo,
path,
json,
query = NULL,
headers = list()) {
PATCH(
service = service,
authInfo = authInfo,
path = path,
query = query,
contentType = "application/json",
content = toJSON(json),
headers = headers
)
}
# User options ------------------------------------------------------------
httpVerbose <- function() {
getOption("rsconnect.http.verbose", FALSE)
}
httpTraceJson <- function() {
getOption("rsconnect.http.trace.json", FALSE)
}
httpTrace <- function(method, path, time) {
if (getOption("rsconnect.http.trace", FALSE)) {
cat(method, " ", path, " ", as.integer(time[["elapsed"]] * 1000), "ms\n",
sep = ""
)
}
}
httpCookies <- function() {
getOption("rsconnect.http.cookies", character())
}
httpHeaders <- function() {
getOption("rsconnect.http.headers", character())
}
httpFunction <- function() {
httpType <- getOption("rsconnect.http", "libcurl")
if (is_string(httpType) && httpType != "libcurl") {
lifecycle::deprecate_warn(
"1.0.0",
I("The `rsconnect.http` option"),
details = c(
"It should no longer be necessary to set this option",
"If the default http handler doesn't work for you, please file an issue at <https://github.com/rstudio/rsconnect/issues>"
)
)
}
if (identical("libcurl", httpType)) {
httpLibCurl
} else if (identical("rcurl", httpType)) {
httpRCurl
} else if (identical("curl", httpType)) {
httpCurl
} else if (identical("internal", httpType)) {
httpInternal
} else if (is.function(httpType)) {
httpType
} else {
stop(paste(
"Invalid http option specified:", httpType,
". Valid values are libcurl, rcurl, curl, and internal"
))
}
}
# URL manipulation --------------------------------------------------------
parseHttpUrl <- function(urlText) {
matches <- regexec("(http|https)://([^:/#?]+)(?::(\\d+))?(.*)", urlText)
components <- regmatches(urlText, matches)[[1]]
if (length(components) == 0) {
stop("Invalid url: ", urlText)
}
url <- list()
url$protocol <- components[[2]]
url$host <- components[[3]]
url$port <- components[[4]]
url$path <- components[[5]]
url
}
buildHttpUrl <- function(x) {
colon <- if (!is.null(x$port) && nzchar(x$port)) ":"
paste0(x$protocol, "://", x$host, colon, x$port, x$path)
}
urlDecode <- function(x) {
curl::curl_unescape(x)
}
urlEncode <- function(x) {
if (inherits(x, "AsIs")) {
return(x)
}
RCurl::curlEscape(x)
}
buildPath <- function(apiPath, path, query = NULL) {
# prepend the service path
url <- paste(apiPath, path, sep = "")
# append the query
if (!is.null(query)) {
# URL encode query args
query <- utils::URLencode(query)
url <- paste(url, "?", query, sep = "")
}
url
}
queryString <- function(elements) {
stopifnot(is.list(elements))
elements <- elements[!sapply(elements, is.null)]
names <- curl::curl_escape(names(elements))
values <- vapply(elements, urlEncode, character(1))
if (length(elements) > 0) {
result <- paste0(names, "=", values, collapse = "&")
} else {
result <- ""
}
return(result)
}
# Auth --------------------------------------------------------------------
requestCertificate <- function(protocol, certificate = NULL) {
if (identical(protocol, "https")) {
createCertificateFile(certificate)
} else {
NULL
}
}
authHeaders <- function(authInfo, method, path, file = NULL) {
if (!is.null(authInfo$secret) || !is.null(authInfo$private_key)) {
signatureHeaders(authInfo, method, path, file)
} else if (!is.null(authInfo$apiKey)) {
list(`Authorization` = paste("Key", authInfo$apiKey))
} else {
# The value doesn't actually matter here, but the header needs to be set.
list(`X-Auth-Token` = "anonymous-access")
}
}
# https://github.com/rstudio/connect/wiki/token-authentication#request-signing-rsconnect
signatureHeaders <- function(authInfo, method, path, file = NULL) {
# headers to return
headers <- list()
# remove query string from path if necessary
path <- strsplit(path, "?", fixed = TRUE)[[1]][[1]]
# generate date
date <- rfc2616Date()
if (!is.null(authInfo$secret)) {
# the content hash is a string of hex characters when using secret.
md5 <- fileMD5(file)
# build canonical request
canonicalRequest <- paste(method, path, date, md5, sep = "\n")
# sign request using shared secret
decodedSecret <- openssl::base64_decode(authInfo$secret)
hmac <- openssl::sha256(canonicalRequest, key = decodedSecret)
signature <- paste(openssl::base64_encode(hmac), "; version=1", sep = "")
} else if (!is.null(authInfo$private_key)) {
# the raw content hash is base64 encoded hex values when using private key.
md5 <- openssl::base64_encode(fileMD5(file, raw = TRUE))
# build canonical request
canonicalRequest <- paste(method, path, date, md5, sep = "\n")
# sign request using local private key
private_key <- openssl::read_key(
openssl::base64_decode(authInfo$private_key),
der = TRUE
)
signature <- signRequestPrivateKey(private_key, canonicalRequest)
} else {
stop("can't sign request: no shared secret or private key")
}
# return headers
headers$Date <- date
headers$`X-Auth-Token` <- authInfo$token
headers$`X-Auth-Signature` <- signature
headers$`X-Content-Checksum` <- md5
headers
}
signRequestPrivateKey <- function(private_key, canonicalRequest) {
# convert key into PKI format for signing, note this only accepts RSA, but
# that's what rsconnect generates already
pem <- openssl::write_pem(private_key)
pem_lines <- readLines(textConnection(pem))
pki_key <- PKI::PKI.load.key(pem_lines, format = "PEM")
# use sha1 digest and then sign. digest and PKI avoid using system openssl which
# can be problematic in strict FIPS environments
digested <- digest::digest(charToRaw(canonicalRequest), "sha1", serialize = FALSE, raw = TRUE)
rawsig <- PKI::PKI.sign(key = pki_key, digest = digested)
openssl::base64_encode(rawsig)
}
rfc2616Date <- function(time = Sys.time()) {
# set locale to POSIX/C to ensure ASCII date
old <- Sys.getlocale("LC_TIME")
Sys.setlocale("LC_TIME", "C")
defer(Sys.setlocale("LC_TIME", old))
strftime(time, "%a, %d %b %Y %H:%M:%S GMT", tz = "GMT")
}
# Helpers -----------------------------------------------------------------
userAgent <- function() {
paste("rsconnect", packageVersion("rsconnect"), sep = "/")
}
parseHttpHeader <- function(header) {
split <- strsplit(header, ": ")[[1]]
if (length(split) == 2) {
return(list(name = split[1], value = split[2]))
} else {
return(NULL)
}
}
parseHttpStatusCode <- function(statusLine) {
# extract status code; needs to deal with HTTP/1.0, HTTP/1.1, and HTTP/2
statusCode <- regexExtract("HTTP/[0-9]+\\.?[0-9]* ([0-9]+).*", statusLine)
if (is.null(statusCode)) {
return(-1)
} else {
return(as.integer(statusCode))
}
}
# @param request A list containing protocol, host, port, method, and path fields
# @param conn The connection to read the response from.
readHttpResponse <- function(request, conn) {
# read status code
resp <- readLines(conn, 1)
statusCode <- parseHttpStatusCode(resp[1])
# read response headers
contentLength <- NULL
contentType <- NULL
location <- NULL
setCookies <- NULL
repeat {
resp <- readLines(conn, 1)
if (nzchar(resp) == 0) {
break()
}
header <- parseHttpHeader(resp)
if (!is.null(header)) {
name <- tolower(header$name)
if (name == "content-type") {
contentType <- header$value
}
if (name == "content-length") {
contentLength <- as.integer(header$value)
}
if (name == "location") {
location <- header$value
}
if (name == "set-cookie") {
setCookies <- c(setCookies, header$value)
}
}
}
# Store the cookies that were found in the request
storeCookies(request, setCookies)
# read the response content
if (is.null(contentLength)) {
# content length is unknown, so stream remaining text
content <- paste(readLines(con = conn), collapse = "\n")
} else {
# we know the content length, so read exactly that many bytes
content <- rawToChar(readBin(
con = conn, what = "raw",
n = contentLength
))
}
# emit JSON trace if requested
if (httpTraceJson() && identical(contentType, "application/json")) {
cat(paste0(">> ", content, "\n"))
}
# return list
list(
req = request,
status = statusCode,
location = location,
contentType = contentType,
content = content
)
}
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.