+ Configuring Authentication +
+Customizing service client authentication.
+BaseEndpointCustomizing service client authentication.
+The AWS SDK for Go requires Go 1.15 or later. You can view your current version of Go by running the following command.
+The AWS SDK for Go requires Go 1.19 or later. You can view your current version of Go by running the following command:
go version
For information about installing or upgrading your version of Go, see https://golang.org/doc/install.
On October 31, 2023, the AWS SDK for Go (v1 and v2) will start following the Go release policy cadence. See the blog post for more information.
- -Welcome to the AWS SDK for Go. The AWS SDK for Go V2 provides APIs and utilities that developers can use to build Go +
Welcome to the AWS SDK for Go. The AWS SDK for Go V2 provides APIs and utilities that developers can use to build Go applications that use AWS services, such as Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Simple Storage Service (Amazon S3).
The SDK removes the complexity of coding directly against a web service interface. It hides a lot of the lower-level @@ -571,6 +571,14 @@
Answers to some commonly-asked questions about the AWS SDK for Go V2
+For more information on error handling, including how to inspect for specific error types, see the Handling Errors documentation.
-Some API operations return a response struct that contain an output member that is an io.ReadCloser. If you’re making
-requests with these operations, always be sure to call io.ReadCloser member’s Close method after you’ve completed
-reading the content.
For example Amazon S3 GetObject operation returns a response
-whose Body member is an io.ReadCloser:
io.ReadCloserSome API operations return a response struct that contain an output member that
+is an io.ReadCloser. This will be the case for API operations that expose
+some element of their output in the body of the HTTP response itself.
For example, Amazon S3 GetObject operation returns a response
+whose Body member is an io.ReadCloser for accessing the object payload.
You MUST ALWAYS Close() any io.ReadCloser output members, regardless of
+whether you’ve consumed its content. Failure to do so can leak resources and
+potentially create issues with reading response bodies for operations called in
+the future.
resp, err := s3svc.GetObject(context.TODO(), &s3.GetObjectInput{...})
if err != nil {
// handle error
@@ -703,7 +722,7 @@ Responses with io.ReadCloser
All service operation output structs include a ResultMetadata member of type
middleware.Metadata. middleware.Metadata is used by the SDK middleware
to provide additional information from a service response that is not modeled by the service. This includes metadata
-like the RequestID. For example to retrieve the RequestID associated with a service response to assit AWS Support in
+like the RequestID. For example to retrieve the RequestID associated with a service response to assist AWS Support in
troubleshooting a request:
import "fmt"
import "log"
@@ -1004,7 +1023,7 @@ Using Waiters
- Last modified October 6, 2022: Update making-requests.md (#1879) (4b56845262)
+ Last modified December 21, 2023: docs: add FAQ/troubleshooting and operation timing guide (aa70a99eac)
diff --git a/docs/docs/middleware/index.html b/docs/docs/middleware/index.html
index 74c9d2f0850..275a5b2e813 100644
--- a/docs/docs/middleware/index.html
+++ b/docs/docs/middleware/index.html
@@ -104,7 +104,7 @@
aria-label="Search this site…"
autocomplete="off"
- data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.810a5299d837b395cdd69648bfec2e99.json"
+ data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.ba2b7a89f1555398e1c5839c9aee3bc1.json"
data-offline-search-base-href="/"
data-offline-search-max-results="10"
>
@@ -126,7 +126,7 @@
aria-label="Search this site…"
autocomplete="off"
- data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.810a5299d837b395cdd69648bfec2e99.json"
+ data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.ba2b7a89f1555398e1c5839c9aee3bc1.json"
data-offline-search-base-href="/"
data-offline-search-max-results="10"
>
@@ -144,7 +144,9 @@
Configuring the SDK
-
+
+ FAQ / Troubleshooting
+
+
+
Testing
diff --git a/docs/docs/migrating/index.html b/docs/docs/migrating/index.html
index e684f009de5..f102be89260 100644
--- a/docs/docs/migrating/index.html
+++ b/docs/docs/migrating/index.html
@@ -100,7 +100,7 @@
aria-label="Search this site…"
autocomplete="off"
- data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.810a5299d837b395cdd69648bfec2e99.json"
+ data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.ba2b7a89f1555398e1c5839c9aee3bc1.json"
data-offline-search-base-href="/"
data-offline-search-max-results="10"
>
@@ -122,7 +122,7 @@
aria-label="Search this site…"
autocomplete="off"
- data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.810a5299d837b395cdd69648bfec2e99.json"
+ data-offline-search-index-json-src="/aws-sdk-go-v2/offline-search-index.ba2b7a89f1555398e1c5839c9aee3bc1.json"
data-offline-search-base-href="/"
data-offline-search-max-results="10"
>
@@ -140,7 +140,9 @@
Configuring the SDK
-
Middleware
+
+ FAQ / Troubleshooting
+
+
+
Testing
@@ -424,6 +433,7 @@
+ Mocking and *iface
Credentials & Credential Providers
+ Request customization
+
Features
@@ -450,6 +469,7 @@
Amazon EC2 Instance Metadata Service
Amazon S3 Transfer Manager
Amazon CloudFront Signing Utilities
+ Amazon S3 Encryption Client
@@ -514,8 +534,7 @@ Migrating to the AWS SDK for Go V2
Minimum Go Version
-The AWS SDK for Go V2 requires a minimum version of Go 1.15. Migration from AWS SDK for Go to AWS SDK for Go V2
-might require you to upgrade your application by one or more Go versions. The latest version of Go can be downloaded on
+
The AWS SDK for Go V2 requires a minimum Go version of 1.19. Migration from v1 to v2 The latest version of Go can be downloaded on
the Downloads page. See the Release History for
more information about each Go version release, and relevant information required for upgrading.
Modularization
@@ -670,7 +689,58 @@ Migrating from NewSessio
if err != nil {
// handle error
}
-*ifaceThe *iface packages and interfaces therein (e.g. s3iface.S3API)
+have been removed. These interface definitions are not stable since they are
+broken every time a service adds a new operation.
Usage of *iface should be replaced by scoped caller-defined interfaces for
+the service operations being used:
// V1
+
+import "io"
+
+import "github.com/aws/aws-sdk-go/service/s3"
+import "github.com/aws/aws-sdk-go/service/s3/s3iface"
+
+func GetObjectBytes(client s3iface.S3API, bucket, key string) ([]byte, error) {
+ object, err := client.GetObject(&s3.GetObjectInput{
+ Bucket: &bucket,
+ Key: &key,
+ })
+ if err != nil {
+ return nil, err
+ }
+ defer object.Body.Close()
+
+ return io.ReadAll(object.Body)
+}
+// V2
+
+import "context"
+import "io"
+
+import "github.com/aws/aws-sdk-go-v2/service/s3"
+
+
+type GetObjectAPIClient interface {
+ GetObject(context.Context, *s3.GetObjectInput, ...func(*s3.Options)) (*s3.GetObjectOutput, error)
+}
+
+func GetObjectBytes(ctx context.Context, client GetObjectAPIClient, bucket, key string) ([]byte, error) {
+ object, err := api.GetObject(ctx, &s3.GetObjectInput{
+ Bucket: &bucket,
+ Key: &key,
+ })
+ if err != nil {
+ return nil, err
+ }
+ defer object.Body.Close()
+
+ return io.ReadAll(object.Body)
+}
+See the testing guide for more +information.
+The aws/credentials package and associated credential providers have been
relocated to the credentials package location. The credentials package is a Go module that
you retrieve by using go get.
The endpoints package no longer exists in the AWS SDK for Go V2. Each service client now embeds its required AWS endpoint metadata within the client package. This reduces the overall binary size of compiled applications by no longer including endpoint metadata for services not used by your application.
+Additionally, each service now exposes its own interface for endpoint
+resolution in EndpointResolverV2. Each API takes a unique set of parameters
+for a service EndpointParameters, the values of which are sourced by the SDK
+from various locations when an operation is invoked.
By default, service clients use their configured AWS Region to resolve the service endpoint for the target Region. If
-your application requires a custom endpoint to be specified for a particular service and region, you can specify
-a custom aws.EndpointResolver using the EndpointResolver field on the
+your application requires a custom endpoint, you can specify custom behavior on EndpointResolverV2 field on the
aws.Config structure. If your application implements a custom
-endpoints.Resolver you must migrate it to conform to the
-aws.EndpointResolver interface. aws.EndpointResolverFunc is provided as
-a convenient way to wrap a resolver function to satisfy the aws.EndpointResolver interface.
For more information on endpoints and implementing a custom resolver, see Configuring Client Endpoints.
+The AWS SDK for Go V2 supports more advanced authentication behavior, which +enables the use of newer AWS service features such as codecatalyst and S3 +Express One Zone. Additionally, this behavior can be customized on a per-client +basis.
The number of service client operation methods have been reduced significantly. The <OperationName>Request,
<OperationName>WithContext, and <OperationName> methods have all been consolidated into single operation method, <OperationName>.
s3.BucketExistsWaiter provides a
Wait method which can be used to wait for a bucket to become available.
-The V1 SDK technically supported presigning any AWS SDK operation, however, +this does not accurately represent what is actually supported at the service +level (and in reality most AWS service operations do not support presigning).
+AWS SDK for Go V2 resolves this by exposing specific PresignClient
+implementations in service packages with specific APIs for supported
+presignable operations.
Note: If a service is missing presigning support for an operation that you +were successfully using in SDK v1, please let us know by +filing an issue on GitHub.
+Uses of Presign and +PresignRequest must +be converted to use service-specific presigning clients.
+The following example shows how to migrate presigning of an S3 GetObject +request:
+// V1
+
+import (
+ "fmt"
+ "time"
+
+ "github.com/aws/aws-sdk-go/aws"
+ "github.com/aws/aws-sdk-go/aws/session"
+ "github.com/aws/aws-sdk-go/service/s3"
+)
+
+func main() {
+ sess := session.Must(session.NewSessionWithOptions(session.Options{
+ SharedConfigState: session.SharedConfigEnable,
+ }))
+
+ svc := s3.New(sess)
+ req, _ := svc.GetObjectRequest(&s3.GetObjectInput{
+ Bucket: aws.String("bucket"),
+ Key: aws.String("key"),
+ })
+
+ // pattern 1
+ url1, err := req.Presign(20 * time.Minute)
+ if err != nil {
+ panic(err)
+ }
+ fmt.Println(url1)
+
+ // pattern 2
+ url2, header, err := req.PresignRequest(20 * time.Minute)
+ if err != nil {
+ panic(err)
+ }
+ fmt.Println(url2, header)
+}
+// V2
+
+import (
+ "context"
+ "fmt"
+ "time"
+
+ "github.com/aws/aws-sdk-go-v2/aws"
+ "github.com/aws/aws-sdk-go-v2/config"
+ "github.com/aws/aws-sdk-go-v2/service/s3"
+)
+
+func main() {
+ cfg, err := config.LoadDefaultConfig(context.Background())
+ if err != nil {
+ panic(err)
+ }
+
+ svc := s3.NewPresignClient(s3.NewFromConfig(cfg))
+ req, err := svc.PresignGetObject(context.Background(), &s3.GetObjectInput{
+ Bucket: aws.String("bucket"),
+ Key: aws.String("key"),
+ }, func(o *s3.PresignOptions) {
+ o.Expires = 20 * time.Minute
+ })
+ if err != nil {
+ panic(err)
+ }
+
+ fmt.Println(req.Method, req.URL, req.SignedHeader)
+}
+The monolithic request.Request API +has been re-compartmentalized.
+The opaque Request fields Params and Data, which hold the operation input
+and output structures respectively, are now accessible within specific
+middleware phases as input/output:
Request handlers which reference Request.Params and Request.Data must be migrated to middleware.
Params// V1
+
+import (
+ "github.com/aws/aws-sdk-go/aws"
+ "github.com/aws/aws-sdk-go/aws/request"
+ "github.com/aws/aws-sdk-go/aws/session"
+ "github.com/aws/aws-sdk-go/service/s3"
+)
+
+func withPutObjectDefaultACL(acl string) request.Option {
+ return func(r *request.Request) {
+ in, ok := r.Params.(*s3.PutObjectInput)
+ if !ok {
+ return
+ }
+
+ if in.ACL == nil {
+ in.ACL = aws.String(acl)
+ }
+ r.Params = in
+ }
+}
+
+func main() {
+ sess := session.Must(session.NewSession())
+ sess.Handlers.Validate.PushBack(withPutObjectDefaultACL(s3.ObjectCannedACLBucketOwnerFullControl))
+
+ // ...
+}
+// V2
+
+import (
+ "context"
+
+ "github.com/aws/aws-sdk-go-v2/service/s3"
+ "github.com/aws/aws-sdk-go-v2/service/s3/types"
+ "github.com/aws/smithy-go/middleware"
+ smithyhttp "github.com/aws/smithy-go/transport/http"
+)
+
+type withPutObjectDefaultACL struct {
+ acl types.ObjectCannedACL
+}
+
+// implements middleware.InitializeMiddleware, which runs BEFORE a request has
+// been serialized and can act on the operation input
+var _ middleware.InitializeMiddleware = (*withPutObjectDefaultACL)(nil)
+
+func (*withPutObjectDefaultACL) ID() string {
+ return "withPutObjectDefaultACL"
+}
+
+func (m *withPutObjectDefaultACL) HandleInitialize(ctx context.Context, in middleware.InitializeInput, next middleware.InitializeHandler) (
+ out middleware.InitializeOutput, metadata middleware.Metadata, err error,
+) {
+ input, ok := in.Parameters.(*s3.PutObjectInput)
+ if !ok {
+ return next.HandleInitialize(ctx, in)
+ }
+
+ if len(input.ACL) == 0 {
+ input.ACL = m.acl
+ }
+ in.Parameters = input
+ return next.HandleInitialize(ctx, in)
+}
+
+// create a helper function to simplify instrumentation of our middleware
+func WithPutObjectDefaultACL(acl types.ObjectCannedACL) func (*s3.Options) {
+ return func(o *s3.Options) {
+ o.APIOptions = append(o.APIOptions, func (s *middleware.Stack) error {
+ return s.Initialize.Add(&withPutObjectDefaultACL{acl: acl}, middleware.After)
+ })
+ }
+}
+
+func main() {
+ cfg, err := config.LoadDefaultConfig(context.Background())
+ if err != nil {
+ // ...
+ }
+
+ svc := s3.NewFromConfig(cfg, WithPutObjectDefaultACL(types.ObjectCannedACLBucketOwnerFullControl))
+ // ...
+}
+Data// V1
+
+import (
+ "github.com/aws/aws-sdk-go/aws"
+ "github.com/aws/aws-sdk-go/aws/request"
+ "github.com/aws/aws-sdk-go/aws/session"
+ "github.com/aws/aws-sdk-go/service/s3"
+)
+
+func readPutObjectOutput(r *request.Request) {
+ output, ok := r.Data.(*s3.PutObjectOutput)
+ if !ok {
+ return
+ }
+
+ // ...
+ }
+}
+
+func main() {
+ sess := session.Must(session.NewSession())
+ sess.Handlers.Unmarshal.PushBack(readPutObjectOutput)
+
+ svc := s3.New(sess)
+ // ...
+}
+// V2
+
+import (
+ "context"
+
+ "github.com/aws/aws-sdk-go-v2/config"
+ "github.com/aws/aws-sdk-go-v2/service/s3"
+ "github.com/aws/smithy-go/middleware"
+ smithyhttp "github.com/aws/smithy-go/transport/http"
+)
+
+type readPutObjectOutput struct{}
+
+var _ middleware.DeserializeMiddleware = (*readPutObjectOutput)(nil)
+
+func (*readPutObjectOutput) ID() string {
+ return "readPutObjectOutput"
+}
+
+func (*readPutObjectOutput) HandleDeserialize(ctx context.Context, in middleware.DeserializeInput, next middleware.DeserializeHandler) (
+ out middleware.DeserializeOutput, metadata middleware.Metadata, err error,
+) {
+ out, metadata, err = next.HandleDeserialize(ctx, in)
+ if err != nil {
+ // ...
+ }
+
+ output, ok := in.Parameters.(*s3.PutObjectOutput)
+ if !ok {
+ return out, metadata, err
+ }
+
+ // inspect output...
+
+ return out, metadata, err
+}
+
+func WithReadPutObjectOutput(o *s3.Options) {
+ o.APIOptions = append(o.APIOptions, func (s *middleware.Stack) error {
+ return s.Initialize.Add(&withReadPutObjectOutput{}, middleware.Before)
+ })
+}
+
+func main() {
+ cfg, err := config.LoadDefaultConfig(context.Background())
+ if err != nil {
+ // ...
+ }
+
+ svc := s3.NewFromConfig(cfg, WithReadPutObjectOutput)
+ // ...
+}
+The HTTPRequest and HTTPResponse fields from Request are now exposed in
+specific middleware phases. Since middleware is transport-agnostic, you must
+perform a type assertion on the middleware input or output to reveal the
+underlying HTTP request or response.
Request handlers which reference Request.HTTPRequest and
+Request.HTTPResponse must be migrated to middleware.
HTTPRequest// V1
+
+import (
+ "github.com/aws/aws-sdk-go/aws/request"
+ "github.com/aws/aws-sdk-go/aws/session"
+)
+
+func withHeader(header, val string) request.Option {
+ return func(r *request.Request) {
+ request.HTTPRequest.Header.Set(header, val)
+ }
+}
+
+func main() {
+ sess := session.Must(session.NewSession())
+ sess.Handlers.Build.PushBack(withHeader("x-user-header", "..."))
+
+ svc := s3.New(sess)
+ // ...
+}
+// V2
+
+import (
+ "context"
+ "fmt"
+
+ "github.com/aws/aws-sdk-go-v2/config"
+ "github.com/aws/aws-sdk-go-v2/service/s3"
+ "github.com/aws/smithy-go/middleware"
+ smithyhttp "github.com/aws/smithy-go/transport/http"
+)
+
+type withHeader struct {
+ header, val string
+}
+
+// implements middleware.BuildMiddleware, which runs AFTER a request has been
+// serialized and can operate on the transport request
+var _ middleware.BuildMiddleware = (*withHeader)(nil)
+
+func (*withHeader) ID() string {
+ return "withHeader"
+}
+
+func (m *withHeader) HandleBuild(ctx context.Context, in middleware.BuildInput, next middleware.BuildHandler) (
+ out middleware.BuildOutput, metadata middleware.Metadata, err error,
+) {
+ req, ok := in.Request.(*smithyhttp.Request)
+ if !ok {
+ return out, metadata, fmt.Errorf("unrecognized transport type %T", in.Request)
+ }
+
+ req.Header.Set(m.header, m.val)
+ return next.HandleBuild(ctx, in)
+}
+
+func WithHeader(header, val string) func (*s3.Options) {
+ return func(o *s3.Options) {
+ o.APIOptions = append(o.APIOptions, func (s *middleware.Stack) error {
+ return s.Build.Add(&withHeader{
+ header: header,
+ val: val,
+ }, middleware.After)
+ })
+ }
+}
+
+func main() {
+ cfg, err := config.LoadDefaultConfig(context.Background())
+ if err != nil {
+ // ...
+ }
+
+ svc := s3.NewFromConfig(cfg, WithHeader("x-user-header", "..."))
+ // ...
+}
+SDK v2 middleware phases are the successor to v1 handler phases.
+The following table provides a rough mapping of v1 handler phases to their +equivalent location within the V2 middleware stack:
+| v1 handler name | +v2 middleware phase | +
|---|---|
| Validate | +Initialize | +
| Build | +Serialize | +
| Sign | +Finalize | +
| Send | +n/a (1) | +
| ValidateResponse | +Deserialize | +
| Unmarshal | +Deserialize | +
| UnmarshalMetadata | +Deserialize | +
| UnmarshalError | +Deserialize | +
| Retry | +Finalize, after "Retry" middleware (2) |
+
| AfterRetry | +Finalize, before "Retry" middleware, post-next.HandleFinalize() (2,3) |
+
| CompleteAttempt | +Finalize, end of step | +
| Complete | +Initialize, start of step, post-next.HandleInitialize() (3) |
+
(1) The Send phase in v1 is effectively the wrapped HTTP client round-trip in
+v2. This behavior is controlled by the HTTPClient field on client options.
(2) Any middleware after the "Retry" middleware in the Finalize step will be
+part of the retry loop.
(3) The middleware “stack” at operation time is built into a +repeatedly-decorated handler function. Each handler is responsible for calling +the next one in the chain. This implicitly means that a middleware step can +also take action AFTER its next step has been called.
+For example, for the Initialize step, which is at the top of the stack, this +means Initialize middlewares that take action after calling the next handler +effectively operate at the end of the request:
+// V2
+
+import (
+ "context"
+
+ "github.com/aws/smithy-go/middleware"
+)
+
+type onComplete struct{}
+
+var _ middleware.InitializeMiddleware = (*onComplete)(nil)
+
+func (*onComplete) ID() string {
+ return "onComplete"
+}
+
+func (*onComplete) HandleInitialize(ctx context.Context, in middleware.InitializeInput, next middleware.InitializeHandler) (
+ out middleware.InitializeOutput, metadata middleware.Metadata, err error,
+) {
+ out, metadata, err = next.HandleInitialize(ctx, in)
+
+ // the entire operation was invoked above - the deserialized response is
+ // available opaquely in out.Result, run post-op actions here...
+
+ return out, metadata, err
+}
+The AWS SDK for Go V2 provides an Amazon EC2 Instance Metadata Service (IMDS) client that you can use to query the local IMDS when executing your application on an Amazon EC2 instance. The IMDS client is @@ -1283,7 +1798,32 @@
The AWS SDK for Go V2 provides Amazon CloudFront signing utilities in a Go module outside the service
client import path. This module can be retrieved by using go get.
go get github.com/aws/aws-sdk-go-v2/feature/cloudfront/sign
-Starting in AWS SDK for Go V2, the Amazon S3 encryption client is a separate
+module under AWS Crypto Tools. The latest version of the S3 encryption client
+for Go, 3.x, is now available at https://github.com/aws/amazon-s3-encryption-client-go.
+This module can be retrieved by using go get:
go get github.com/aws/amazon-s3-encryption-client-go/v3
+The separate EncryptionClient
+(v1, v2)
+and DecryptionClient
+(v1, v2)
+APIs have been replaced with a single client,
+S3EncryptionClientV3,
+that exposes both encrypt and decrypt functionality.
Like other service clients in AWS SDK for Go V2, the operation APIs have +been condensed:
+GetObject, GetObjectRequest, and GetObjectWithContext decryption
+APIs are replaced by
+GetObject.PutObject, PutObjectRequest, and PutObjectWithContext encryption
+APIs are replaced by
+PutObject.To learn how to migrate to the 3.x major version of the encryption client, see +this guide.
+