/**
* @covers WindowsAzure\MediaServices\MediaServicesRestProxy::removeContentKeyFromAsset
*/
public function testRemoveContentKeyFromAsset()
{
// Setup
$aesKey = Utilities::generateCryptoKey(32);
$protectionKeyId = $this->restProxy->getProtectionKeyId(ContentKeyTypes::COMMON_ENCRYPTION);
$protectionKey = $this->restProxy->getProtectionKey($protectionKeyId);
$contentKey = new ContentKey();
$contentKey->setContentKey($aesKey, $protectionKey);
$contentKey->setProtectionKeyId($protectionKeyId);
$contentKey->setProtectionKeyType(ProtectionKeyTypes::X509_CERTIFICATE_THUMBPRINT);
$contentKey->setContentKeyType(ContentKeyTypes::COMMON_ENCRYPTION);
$contentKey = $this->createContentKey($contentKey);
$asset = new Asset(Asset::OPTIONS_COMMON_ENCRYPTION_PROTECTED);
$asset->setName(TestResources::MEDIA_SERVICES_ASSET_NAME . $this->createSuffix());
$asset = $this->createAsset($asset);
$this->restProxy->linkContentKeyToAsset($asset, $contentKey);
// Test
$this->restProxy->removeContentKeyFromAsset($asset, $contentKey);
// Assert
$contentKeyFromAsset = $this->restProxy->getAssetContentKeys($asset);
$this->assertEmpty($contentKeyFromAsset);
}
public function testBulkIngestEncryptedAsset()
{
// Setup
$asset = new Asset(Asset::OPTIONS_STORAGE_ENCRYPTED);
$asset->setName(TestResources::MEDIA_SERVICES_ASSET_NAME . $this->createSuffix());
$asset = $this->createAsset($asset);
$aesKey = Utilities::generateCryptoKey(32);
$protectionKeyId = $this->restProxy->getProtectionKeyId(ProtectionKeyTypes::X509_CERTIFICATE_THUMBPRINT);
$protectionKey = $this->restProxy->getProtectionKey($protectionKeyId);
$contentKey = new ContentKey();
$contentKey->setContentKey($aesKey, $protectionKey);
$contentKey->setProtectionKeyId($protectionKeyId);
$contentKey->setProtectionKeyType(ProtectionKeyTypes::X509_CERTIFICATE_THUMBPRINT);
$contentKey->setContentKeyType(ContentKeyTypes::STORAGE_ENCRYPTION);
$contentKey = $this->createContentKey($contentKey);
$this->restProxy->linkContentKeyToAsset($asset, $contentKey);
$fileName = TestResources::MEDIA_SERVICES_DUMMY_FILE_NAME;
$otherFileName = TestResources::MEDIA_SERVICES_DUMMY_FILE_NAME_1;
$manifest = new IngestManifest();
$manifest->setName('IngestManifest' . $this->createSuffix());
$manifest = $this->createIngestManifest($manifest);
$manifestAsset = new IngestManifestAsset($manifest->getId());
$manifestAsset = $this->createIngestManifestAsset($manifestAsset, $asset);
$manifestFile1 = new IngestManifestFile($fileName, $manifest->getId(), $manifestAsset->getId());
$manifestFile2 = new IngestManifestFile($otherFileName, $manifest->getId(), $manifestAsset->getId());
$initializationVector1 = base64_encode(Utilities::generateCryptoKey(8));
$initializationVector2 = base64_encode(Utilities::generateCryptoKey(8));
$manifestFile1->setIsEncrypted(true);
$manifestFile1->setEncryptionKeyId($contentKey->getId());
$manifestFile1->setEncryptionScheme(EncryptionSchemes::STORAGE_ENCRYPTION);
$manifestFile1->setEncryptionVersion(Resources::MEDIA_SERVICES_ENCRYPTION_VERSION);
$manifestFile1->setInitializationVector($initializationVector1);
$manifestFile2->setIsEncrypted(true);
$manifestFile2->setEncryptionKeyId($contentKey->getId());
$manifestFile2->setEncryptionScheme(EncryptionSchemes::STORAGE_ENCRYPTION);
$manifestFile2->setEncryptionVersion(Resources::MEDIA_SERVICES_ENCRYPTION_VERSION);
$manifestFile2->setInitializationVector($initializationVector2);
$manifestFile1 = $this->createIngestManifestFile($manifestFile1);
$manifestFile2 = $this->createIngestManifestFile($manifestFile2);
$initialStat = $this->restProxy->getIngestManifest($manifest);
$blobUrl = $manifest->getBlobStorageUriForUpload();
$blobUrlParts = explode('/', $blobUrl);
$blob = array_pop($blobUrlParts);
$blobRestProxy = $this->builder->createBlobService($this->connectionString);
$blobRestProxy->createBlockBlob($blob, $fileName, TestResources::MEDIA_SERVICES_DUMMY_FILE_CONTENT);
$this->waitIngestManifestFinishedFiles($manifest, 1);
$finishedFirstStat = $this->restProxy->getIngestManifest($manifest);
$blobRestProxy->createBlockBlob($blob, $otherFileName, TestResources::MEDIA_SERVICES_DUMMY_FILE_CONTENT_1);
$this->waitIngestManifestFinishedFiles($manifest, 2);
$finishedSecondStat = $this->restProxy->getIngestManifest($manifest);
// Test
// Assert
$contentKeysFromAsset = $this->restProxy->getAssetContentKeys($asset);
$assetFiles = $this->restProxy->getAssetAssetFileList($asset);
$this->assertEquals(0, $initialStat->getStatistics()->getFinishedFilesCount());
$this->assertEquals(1, $finishedFirstStat->getStatistics()->getFinishedFilesCount());
$this->assertEquals(2, $finishedSecondStat->getStatistics()->getFinishedFilesCount());
$this->assertEquals($contentKey->getId(), $contentKeysFromAsset[0]->getId());
$this->assertEquals($contentKey->getId(), $manifestFile1->getEncryptionKeyId());
$this->assertEquals('true', $manifestFile1->getIsEncrypted());
$this->assertEquals(EncryptionSchemes::STORAGE_ENCRYPTION, $manifestFile1->getEncryptionScheme());
$this->assertEquals($initializationVector1, $manifestFile1->getInitializationVector());
$this->assertEquals(Resources::MEDIA_SERVICES_ENCRYPTION_VERSION, $manifestFile1->getEncryptionVersion());
$this->assertEquals($contentKey->getId(), $manifestFile2->getEncryptionKeyId());
$this->assertEquals('true', $manifestFile2->getIsEncrypted());
$this->assertEquals(EncryptionSchemes::STORAGE_ENCRYPTION, $manifestFile2->getEncryptionScheme());
$this->assertEquals($initializationVector2, $manifestFile2->getInitializationVector());
$this->assertEquals(Resources::MEDIA_SERVICES_ENCRYPTION_VERSION, $manifestFile2->getEncryptionVersion());
// Files order is not static, so we don't know the index of each file and need to serve them as a set
$resultFileNames = array($assetFiles[0]->getName(), $assetFiles[1]->getName());
$this->assertContains($otherFileName, $resultFileNames);
$this->assertEquals($asset->getId(), $assetFiles[0]->getParentAssetId());
$this->assertContains($fileName, $resultFileNames);
$this->assertEquals($asset->getId(), $assetFiles[1]->getParentAssetId());
}
/**
* @covers WindowsAzure\Common\Internal\Utilities::ctrCrypt
*/
public function testCtrCryptInvalidInitializationVectorLength()
{
// Setup
$data = 'Test data more than 16 bytes';
$key = Utilities::generateCryptoKey(32);
$initializationVector = '1234';
$this->setExpectedException(get_class(new \InvalidArgumentException('')));
// Test
$actual = Utilities::ctrCrypt($data, $key, $initializationVector);
}
/**
* Create SymmetricTokenVerificationKey
*
* @return void
*/
public function __construct()
{
$this->_keyValue = Utilities::generateCryptoKey(64);
}
function createCommonCBCTypeContentKey($restProxy, $encodedAsset)
{
// 3.1 Generate a new key
$aesKey = Utilities::generateCryptoKey(16);
// 3.2 Get the protection key id for ContentKey
$protectionKeyId = $restProxy->getProtectionKeyId(ContentKeyTypes::COMMON_ENCRYPTION_CBCS);
$protectionKey = $restProxy->getProtectionKey($protectionKeyId);
$contentKey = new ContentKey();
$contentKey->setContentKey($aesKey, $protectionKey);
$contentKey->setProtectionKeyId($protectionKeyId);
$contentKey->setProtectionKeyType(ProtectionKeyTypes::X509_CERTIFICATE_THUMBPRINT);
$contentKey->setContentKeyType(ContentKeyTypes::COMMON_ENCRYPTION_CBCS);
// 3.3 Create the ContentKey
$contentKey = $restProxy->createContentKey($contentKey);
echo "Content Key id={$contentKey->getId()}" . PHP_EOL;
// 3.4 Associate the ContentKey with the Asset
$restProxy->linkContentKeyToAsset($encodedAsset, $contentKey);
return $contentKey;
}
function createAssetDeliveryPolicy($restProxy, $encodedAsset, $contentKey)
{
// 5.1 Get the acquisition URL
$acquisitionUrl = $restProxy->getKeyDeliveryUrl($contentKey, ContentKeyDeliveryType::BASELINE_HTTP);
// 5.2 Generate the AssetDeliveryPolicy Configuration Key
$randomKey = Utilities::generateCryptoKey(16);
$configuration = [AssetDeliveryPolicyConfigurationKey::ENVELOPE_KEY_ACQUISITION_URL => $acquisitionUrl, AssetDeliveryPolicyConfigurationKey::ENVELOPE_ENCRYPTION_IV_AS_BASE64 => base64_encode($randomKey)];
$confJson = AssetDeliveryPolicyConfigurationKey::stringifyAssetDeliveryPolicyConfiguartionKey($configuration);
// 5.3 Create the AssetDeliveryPolicy
$adpolicy = new AssetDeliveryPolicy();
$adpolicy->setName('Asset Delivery Policy');
$adpolicy->setAssetDeliveryProtocol(AssetDeliveryProtocol::SMOOTH_STREAMING | AssetDeliveryProtocol::DASH | AssetDeliveryProtocol::HLS);
$adpolicy->setAssetDeliveryPolicyType(AssetDeliveryPolicyType::DYNAMIC_ENVELOPE_ENCRYPTION);
$adpolicy->setAssetDeliveryConfiguration($confJson);
$adpolicy = $restProxy->createAssetDeliveryPolicy($adpolicy);
// 5.4 Link the AssetDeliveryPolicy to the Asset
$restProxy->linkDeliveryPolicyToAsset($encodedAsset, $adpolicy->getId());
print "Added Asset Delivery Policy: name={$adpolicy->getName()} id={$adpolicy->getId()}\r\n";
}
$option = $restProxy->createContentKeyAuthorizationPolicyOption($option);
// 4.3 Create ContentKeyAuthorizationPolicy
$ckapolicy = new ContentKeyAuthorizationPolicy();
$ckapolicy->setName('ContentKey Authorization Policy');
$ckapolicy = $restProxy->createContentKeyAuthorizationPolicy($ckapolicy);
// 4.4 Link the ContentKeyAuthorizationPolicyOption to the ContentKeyAuthorizationPolicy
$restProxy->linkOptionsToContentKeyAuthorizationPolicy($option, $ckapolicy);
// 4.5 Associate the ContentKeyAuthorizationPolicy with the ContentKey
$contentKey->setAuthorizationPolicyId($ckapolicy->getId());
$restProxy->updateContentKey($contentKey);
print "Added Content Key Authorization Policy: name={$ckapolicy->getName()} id={$ckapolicy->getId()}\r\n";
// Phase 5 - Create the AssetDeliveryPolicy
// 5.1 Get the acquisition URL
$acquisitionUrl = $restProxy->getKeyDeliveryUrl($contentKey, ContentKeyDeliveryType::BASELINE_HTTP);
// 5.2 Generate the AssetDeliveryPolicy Configuration Key
$randomKey = Utilities::generateCryptoKey(16);
$configuration = [AssetDeliveryPolicyConfigurationKey::ENVELOPE_KEY_ACQUISITION_URL => $acquisitionUrl, AssetDeliveryPolicyConfigurationKey::ENVELOPE_ENCRYPTION_IV_AS_BASE64 => base64_encode($randomKey)];
$confJson = AssetDeliveryPolicyConfigurationKey::stringifyAssetDeliveryPolicyConfiguartionKey($configuration);
// 5.3 Create the AssetDeliveryPolicy
$adpolicy = new AssetDeliveryPolicy();
$adpolicy->setName('Asset Delivery Policy');
$adpolicy->setAssetDeliveryProtocol(AssetDeliveryProtocol::SMOOTH_STREAMING | AssetDeliveryProtocol::DASH | AssetDeliveryProtocol::HLS);
$adpolicy->setAssetDeliveryPolicyType(AssetDeliveryPolicyType::DYNAMIC_ENVELOPE_ENCRYPTION);
$adpolicy->setAssetDeliveryConfiguration($confJson);
$adpolicy = $restProxy->createAssetDeliveryPolicy($adpolicy);
// 5.4 Link the AssetDeliveryPolicy to the Asset
$restProxy->linkDeliveryPolicyToAsset($encodedAsset, $adpolicy->getId());
print "Added Asset Delivery Policy: name={$adpolicy->getName()} id={$adpolicy->getId()}\r\n";
// Phase 6 - Publish
// 6.1 Get the .ISM AssetFile
$files = $restProxy->getAssetFileList();
