Digital-Ecosystems
diff --git a/‎README.md‎
Lines changed: 120 additions & 16 deletions b/‎README.md‎
Lines changed: 120 additions & 16 deletions
diff --git a/‎extensions/core-ionos-s3/build.gradle.kts‎
Lines changed: 4 additions & 0 deletions b/‎extensions/core-ionos-s3/build.gradle.kts‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎extensions/core-ionos-s3/src/main/java/com/ionos/edc/extension/s3/IonosS3CoreExtension.java‎
Lines changed: 91 additions & 0 deletions b/‎extensions/core-ionos-s3/src/main/java/com/ionos/edc/extension/s3/IonosS3CoreExtension.java‎
Lines changed: 91 additions & 0 deletions
diff --git a/‎extensions/core-ionos-s3/src/main/java/com/ionos/edc/extension/s3/S3CoreExtension.java‎
Lines changed: 0 additions & 72 deletions b/‎extensions/core-ionos-s3/src/main/java/com/ionos/edc/extension/s3/S3CoreExtension.java‎
Lines changed: 0 additions & 72 deletions
@@ -49,7 +49,7 @@ The extension has the following dependencies:
 | `org.eclipse.edc:data-plane-selector-core`   | Main features of the data plane selector |
 
 ### Configurations
-It is required to configure an `Access key` and a `Secret Access Key` from the IONOS S3 storage service.
+It is required to configure an `Authentication Token` [docs](https://docs.ionos.com/cloud/set-up-ionos-cloud/management/token-management) and a `S3 Access key` [docs](https://docs.ionos.com/cloud/storage-and-backup/ionos-object-storage/concepts/key-management) to use the extension.
 
 The credentials can be found/configured in one of the following:
 - Vault;
@@ -59,17 +59,15 @@ The credentials can be found/configured in one of the following:
 
 It is required to configure those parameters:
 
-| Parameter name                      | Description                                                                                                                                   | Mandatory                                            |
-|-------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------|
-| `edc.ionos.access.key`              | IONOS Access Key Id to access S3                                                                                                              | Yes if the context is accessing file                 |
-| `edc.ionos.secret.access.key`       | IONOS Secret Access Key to access S3                                                                                                          | Yes if the context is accessing file                 |
-| `edc.ionos.token`                   | IONOS token to allow S3 provisioning                                                                                                          | Yes if the context is provisioning access for others |
-| `edc.ionos.endpoint.region`         | IONOS S3 endpoint region. Refer to [docs](https://docs.ionos.com/cloud/managed-services/s3-object-storage/endpoints) for further information. | No, the default value is "de"                        |
-| `edc.ionos.max.files`               | Maximum number of files retrieved by list files function.                                                                                     | No, the default value is 5,000 files                 |
-| `edc.ionos.key.validation.attempts` | Maximum number of attemps to validate a temporary key after its creation.                                                                     | No, the default values is 10 attempts                |
-| `edc.ionos.key.validation.delay`    | Time to wait (in milisseconds) before each key validation attempt. In each new attempt the delay is multiplied by the attempt number.         | No, the default value is 3,000 (3 seconds)           |
-
-To create the token please take a look at the following [documentation](./ionos_token.md).
+| Parameter name                      | Description                                                                                                                                                       | Mandatory                                            |
+|-------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------|
+| `edc.ionos.access.key`              | IONOS Access Key Id to access S3                                                                                                                                  | Yes if the context is accessing file                 |
+| `edc.ionos.secret.access.key`       | IONOS Secret Access Key to access S3                                                                                                                              | Yes if the context is accessing file                 |
+| `edc.ionos.token`                   | IONOS Token to allow S3 provisioning                                                                                                                              | Yes if the context is provisioning access for others |
+| `edc.ionos.endpoint.region`         | IONOS S3 endpoint default region. It will be used if a region is not defined in the dataAddress or dataDestination. Refer to [docs](https://docs.ionos.com/cloud/managed-services/s3-object-storage/endpoints) for further information. | No, the default value is "de"                        |
+| `edc.ionos.max.files`               | Maximum number of files copied by S3 bucket folder.                                                                                                               | No, the default value is 5,000 files                 |
+| `edc.ionos.key.validation.attempts` | Maximum number of attemps to validate a temporary key after its creation.                                                                                         | No, the default values is 10 attempts                |
+| `edc.ionos.key.validation.delay`    | Time to wait (in milisseconds) before each key validation attempt. In each new attempt the delay is multiplied by the attempt number.                             | No, the default value is 3,000 (3 seconds)           |
 
 ## Building and Running
 
@@ -93,9 +91,115 @@ cd launchers/prod/connector-persistence
 java -Dedc.fs.config=resources/config.properties -jar build/libs/dataspace-connector.jar
 ```
 
-## Examples
-In order to see working examples go to [edc-ionos-samples](https://github.com/Digital-Ecosystems/edc-ionos-samples).
-
-## Deploying to IONOS Kubernetes
+## Deploying
 Check the [deployment readme](https://github.com/ionos-cloud/edc-ionos-s3/tree/main/deployment/README.md) to see how to deploy the Connector locally or to an external Kubernetes cluster.
 
+## Usage
+
+### DataAddress
+To create an asset using an IONOS S3 Bucket as its data address, use the following format:
+
+To share a file:
+```
+{
+    "@context": {
+        "@vocab": "https://w3id.org/edc/v0.0.1/ns/")
+    },
+    "@id": "asset-671",
+    "properties": {
+        "name": "Test Asset"
+    },
+    "dataAddress": {
+        "type": "IonosS3",
+        "region": "de",
+        "bucketName": "providerBucket",
+        "blobName": "device1-data.csv"
+    }
+}
+```
+
+To share a folder:
+```
+{
+    "@context": {
+        "@vocab": "https://w3id.org/edc/v0.0.1/ns/")
+    },
+    "@id": "asset-671",
+    "properties": {
+        "name": "Test Asset"
+    },
+    "dataAddress": {
+        "type": "IonosS3",
+        "region": "de",
+        "bucketName": "providerBucket",
+        "blobName": "folder/",
+        filter.includes: "*.csv"
+    }
+}
+```
+
+| Tag name               | Description                                                                                                                                              | Mandatory                                                                   |
+|------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------|
+| dataAddress.type       | This extension uses the `IonosS3` designation                                                                                                            | Yes                                                                         |
+| dataAddress.region     | S3 Bucket region used to retrieve the S3 API endpoint. [Possible values](https://docs.ionos.com/cloud/storage-and-backup/ionos-object-storage/endpoints) | No.  If not send the configuration `edc.ionos.endpoint.region` will be used |
+| dataAddress.bucketName | Name of the S3 Bucket used to store the asset data                                                                                                       | Yes                                                                         |
+| dataAddress.blobName   | Path to a file or folder on the source S3 Bucket                                                                                                         | Yes                                                                         |
+| filter.includes        | Regular expression to filter the files or folders to be copied from the blobName                                                                         | No                                                                          | 
+| filter.excludes        | Regular expression to filter the files or folders to be NOT be copied from the blobName                                                                  | No                                                                          |
+
+### DataDestination
+To start a transfer using an IONOS S3 Bucket as its data destination, use the following formats:
+
+To transfer to the root folder:
+```
+{
+    "@context":{
+        "edc":"https://w3id.org/edc/v0.0.1/ns/"
+    },
+    "connectorId":"provider",
+    "counterPartyAddress":"http://localhost:8282/protocol",
+    "contractId":"3186afb5-7b10-4665-b07b-233f5665eb98",
+    "protocol":"dataspace-protocol-http",
+    "transferType": "IonosS3-PUSH",
+    "dataDestination":{
+        "type":"IonosS3",
+        "keyName":"4fc5ecaf-6630-4ce5-aacb-f42778a6a65b",
+        "region": "de",
+        "bucketName":"consumerBucket"
+    }
+}
+```
+
+To transfer to a folder:
+```
+{
+    "@context":{
+        "edc":"https://w3id.org/edc/v0.0.1/ns/"
+    },
+    "connectorId":"provider",
+    "counterPartyAddress":"http://localhost:8282/protocol",
+    "contractId":"3186afb5-7b10-4665-b07b-233f5665eb98",
+    "protocol":"dataspace-protocol-http",
+    "transferType": "IonosS3-PUSH",
+    "dataDestination":{
+        "type":"IonosS3",
+        "keyName":"4fc5ecaf-6630-4ce5-aacb-f42778a6a65b",
+        "region": "de",
+        "bucketName":"consumerBucket",
+        "path": "subFolder/"
+    }
+}
+```
+
+Note: Only the PUSH transfer type is supported.
+
+| Tag name               | Description                                                                                                                                              | Mandatory                                                                   |
+|------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------|
+| transferType           | This extension uses the `IonosS3-PUSH` designation                                                                                                       | Yes                                                                         |
+| dataAddress.type       | This extension uses the `IonosS3` designation                                                                                                            | Yes                                                                         |
+| dataAddress.keyName    | Key name used to store the temporary S3 Keys during the transfer. Need to be an unique value.                                                            | Yes                                                                         |
+| dataAddress.region     | S3 Bucket region used to retrieve the S3 API endpoint. [Possible values](https://docs.ionos.com/cloud/storage-and-backup/ionos-object-storage/endpoints) | No. If not send, the configuration `edc.ionos.endpoint.region` will be used |
+| dataAddress.bucketName | Name of the destination S3 Bucket, to receive the transferred data                                                                                       | Yes                                                                         |
+| dataAddress.path       | Path of a folder, on the destination S3 Bucket, to receive the transferred data                                                                          | No                                                                          | 
+
+Note: the scope of this repo is NOT to explain the complete flows (and payloads) of the EDC Connector. If you want to know more please take a look at the [Eclipse EDC Samples](https://github.com/eclipse-edc/Samples).
@@ -7,6 +7,7 @@ val edcGroup: String by project
 val edcVersion: String by project
 val metaModelVersion: String by project
 val minIOVersion: String by project
+val commonsCollectionsVersion: String by project
 val extensionsGroup: String by project
 val extensionsVersion: String by project
 
@@ -19,7 +20,10 @@ dependencies {
 	api("${edcGroup}:runtime-metamodel:${metaModelVersion}")
 
 	implementation("${edcGroup}:transfer-spi:${edcVersion}")
+	implementation("${edcGroup}:validator-spi:${edcVersion}")
+
 	implementation("io.minio:minio:${minIOVersion}")
+	implementation("org.apache.commons:commons-collections4:${commonsCollectionsVersion}")
 }
 
 java {
 
@@ -0,0 +1,91 @@
+/*
+ *  Copyright (c) 2022 IONOS
+ *
+ *  This program and the accompanying materials are made available under the
+ *  terms of the Apache License, Version 2.0 which is available at
+ *  https://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  SPDX-License-Identifier: Apache-2.0
+ *
+ *  Contributors:
+ *      IONOS
+ *
+ */
+
+package com.ionos.edc.extension.s3;
+
+import com.ionos.edc.extension.s3.connector.S3Connector;
+import com.ionos.edc.extension.s3.connector.S3ConnectorImpl;
+import com.ionos.edc.extension.s3.schema.IonosBucketSchema;
+import com.ionos.edc.extension.s3.validators.IonosDataAddressValidator;
+import com.ionos.edc.extension.s3.validators.IonosDataDestinationValidator;
+import org.eclipse.edc.runtime.metamodel.annotation.Extension;
+import org.eclipse.edc.runtime.metamodel.annotation.Inject;
+import org.eclipse.edc.runtime.metamodel.annotation.Provides;
+import org.eclipse.edc.spi.security.Vault;
+import org.eclipse.edc.spi.system.ServiceExtension;
+import org.eclipse.edc.spi.system.ServiceExtensionContext;
+import org.eclipse.edc.validator.spi.DataAddressValidatorRegistry;
+
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_ACCESS_KEY;
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_MAX_FILES;
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_MAX_FILES_DEFAULT;
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_REGION;
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_REGION_DEFAULT;
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_SECRET_KEY;
+import static com.ionos.edc.extension.s3.schema.IonosSettingsSchema.IONOS_TOKEN;
+
+@Provides(S3Connector.class)
+@Extension(value = IonosS3CoreExtension.NAME)
+public class IonosS3CoreExtension implements ServiceExtension {
+
+    public static final String NAME = "IonosS3";
+
+    @Inject
+    private Vault vault;
+
+    @Inject
+    private DataAddressValidatorRegistry dataAddressValidatorRegistry;
+
+    @Override
+    public String name() {
+        return NAME;
+    }
+
+    @Override
+    public void initialize(ServiceExtensionContext context) {
+        var monitor = context.getMonitor();
+        var contextMonitor = monitor.withPrefix("IonosS3CoreExtension");
+
+        contextMonitor.debug("Loading configurations");
+
+        var accessKey = vault.resolveSecret(IONOS_ACCESS_KEY);
+        var secretKey = vault.resolveSecret(IONOS_SECRET_KEY);
+        var region = vault.resolveSecret(IONOS_REGION);
+        var token =  vault.resolveSecret(IONOS_TOKEN);
+
+        if (accessKey == null || secretKey  == null || region == null || token == null) {
+            contextMonitor.warning("Couldn't connect or the vault didn't return values, falling back to ConfigMap Configuration");
+        	accessKey = context.getSetting(IONOS_ACCESS_KEY, null);
+            secretKey = context.getSetting(IONOS_SECRET_KEY, null);
+            region = context.getSetting(IONOS_REGION, IONOS_REGION_DEFAULT);
+            token = context.getSetting(IONOS_TOKEN, null);
+        }
+
+        var maxFiles =  Integer.valueOf(context.getSetting(IONOS_MAX_FILES, IONOS_MAX_FILES_DEFAULT));
+
+        if (accessKey == null || secretKey == null || token == null) {
+            contextMonitor.warning("IONOS token and S3 key are not set, disabling IONOS S3 Connector");
+        } else {
+            contextMonitor.debug("Initializing S3 Connector");
+            var s3Connector = new S3ConnectorImpl(region, accessKey, secretKey, token, maxFiles);
+            context.registerService(S3Connector.class, s3Connector);
+        }
+
+        contextMonitor.debug("Registering validators");
+        dataAddressValidatorRegistry.registerSourceValidator(IonosBucketSchema.TYPE, new IonosDataAddressValidator());
+        dataAddressValidatorRegistry.registerDestinationValidator(IonosBucketSchema.TYPE, new IonosDataDestinationValidator());
+
+        contextMonitor.debug("Core extension initialized !");
+    }
+}