apache · Xuanwo · Aug 13, 2024 · Aug 7, 2024 · Aug 7, 2024 · Aug 7, 2024
@@ -74,6 +74,10 @@ pub struct GcsConfig {
     pub disable_vm_metadata: bool,
     /// Disable loading configuration from the environment.
     pub disable_config_load: bool,
+    /// A Google Cloud OAuth2 token.
+    ///
+    /// Takes precedence over `credential` and `credential_path`.
+    pub token: Option<String>,
 }
 
 impl Debug for GcsConfig {
@@ -214,6 +218,12 @@ impl GcsBuilder {
         self
     }
 
+    /// Provide the OAuth2 token to use.
+    pub fn token(mut self, token: String) -> Self {
+        self.config.token = Some(token);
+        self
+    }
+
     /// Disable attempting to load credentials from the GCE metadata server.
     pub fn disable_vm_metadata(mut self) -> Self {
         self.config.disable_vm_metadata = true;
@@ -354,6 +364,7 @@ impl Builder for GcsBuilder {
                 client,
                 signer,
                 token_loader,
+                token: self.config.token,
                 credential_loader: cred_loader,
                 predefined_acl: self.config.predefined_acl.clone(),
                 default_storage_class: self.config.default_storage_class.clone(),

@@ -24,6 +24,7 @@ use std::time::Duration;
 use backon::ExponentialBuilder;
 use backon::Retryable;
 use bytes::Bytes;
+use http::header;
 use http::header::CONTENT_LENGTH;
 use http::header::CONTENT_TYPE;
 use http::header::HOST;
@@ -53,6 +54,7 @@ pub struct GcsCore {
     pub client: HttpClient,
     pub signer: GoogleSigner,
     pub token_loader: GoogleTokenLoader,
+    pub token: Option<String>,
     pub credential_loader: GoogleCredentialLoader,
 
     pub predefined_acl: Option<String>,
@@ -116,6 +118,15 @@ impl GcsCore {
     }
 
     pub async fn sign<T>(&self, req: &mut Request<T>) -> Result<()> {
+        if let Some(token) = &self.token {
 if let Some(token) = &self.token { 
     req.headers_mut().remove(HOST); 
     let header_value = format!("Bearer {}", token); 
     req.headers_mut() 
         .insert(header::AUTHORIZATION, header_value.parse().unwrap()); 
     return Ok(()); 
 } 
 if let Some(token) = &self.token { 
     req.headers_mut().remove(HOST); 
  
     let header_value = format!("Bearer {}", token); 
     req.headers_mut() 
         .insert(header::AUTHORIZATION, header_value.parse().unwrap()); 
     return Ok(()); 
 } 
+            req.headers_mut().remove(HOST);
+
+            let header_value = format!("Bearer {}", token);
+            req.headers_mut()
+                .insert(header::AUTHORIZATION, header_value.parse().unwrap());
+            return Ok(());
+        }
+
         if let Some(cred) = self.load_token().await? {
             self.signer
                 .sign(req, &cred)
@@ -136,6 +147,15 @@ impl GcsCore {
     }
 
     pub async fn sign_query<T>(&self, req: &mut Request<T>, duration: Duration) -> Result<()> {
+        if let Some(token) = &self.token {
+            req.headers_mut().remove(HOST);
+
+            let header_value = format!("Bearer {}", token);
+            req.headers_mut()
+                .insert(header::AUTHORIZATION, header_value.parse().unwrap());
+            return Ok(());
+        }
+
         if let Some(cred) = self.load_credential()? {
             self.signer
                 .sign_query(req, duration, &cred)