chore：add rds connect

Author: sdk-liuzhaoliang

volcengine-java-sdk-core/src/main/java/com/volcengine/endpoint/DefaultEndpointProvider.java

@@ -836,23 +836,6 @@ private static boolean hasEnabledDualstack(Boolean useDualStack) {
         return useDualStack;
     }
 
-    /**
-     * Build a regional endpoint for the given service and region.
-     * <p>
-     * Format: {standardized_service}.{region}.volcengineapi.com
-     * e.g., rds_mysql -> rds-mysql.cn-beijing.volcengineapi.com
-     * <p>
-     * Supports dual-stack via VOLC_ENABLE_DUALSTACK=true env var.
-     *
-     * @param service Service code (e.g., "rds_mysql")
-     * @param region  Region code (e.g., "cn-beijing")
-     * @return Regional endpoint string (without scheme)
-     */
-    public static String getRegionalEndpoint(String service, String region) {
-        String endpointSuffix = hasEnabledDualstack(null) ? DUALSTACK_ENDPOINT_SUFFIX : ENDPOINT_SUFFIX;
-        return standardizeDomainServiceCode(service) + SEPARATOR + region + endpointSuffix;
-    }
-
     @Override
     public ResolvedEndpoint endpointFor(ResolveEndpointOption option) {
         String endpoint = DefaultEndpointProvider.getDefaultEndpointByServiceInfo(option.getService(),

volcengine-java-sdk-core/src/main/java/com/volcengine/feature/rds/auth/ConnectUtils.java

@@ -1,13 +1,16 @@
 package com.volcengine.feature.rds.auth;
 
 import com.volcengine.ApiClient;
-import com.volcengine.endpoint.DefaultEndpointProvider;
-import com.volcengine.sign.Credentials;
-import com.volcengine.sign.VolcstackSign;
+import com.volcengine.ApiException;
+import com.volcengine.Pair;
+import com.volcengine.endpoint.ResolveEndpointOption;
+import com.volcengine.endpoint.ResolvedEndpoint;
+import com.volcengine.endpoint.StandardEndpointProvider;
+import com.volcengine.interceptor.*;
+import com.volcengine.sign.ServiceInfo;
 
 import org.apache.commons.lang.StringUtils;
 
-
 import java.util.*;
 
 /**
@@ -23,78 +26,22 @@ public class ConnectUtils {
 
     /**
      * Generate an authorization token for database connection (used as password).
-     * Extracts credentials, region, and disableSSL from the ApiClient, similar to Go SDK's Config.
+     * Aligned with Go SDK's BuildAuthToken implementation.
      *
-     * @param apiClient  ApiClient containing Credentials, Region, and DisableSSL settings
+     * @param apiClient  ApiClient containing Credentials, Region, DisableSSL, and UseDualStack settings
      * @param dbUser     Database user account
      * @param instanceId Database instance ID
      * @param expires    Expiration time in seconds, defaults to 900 seconds (15 minutes) if <= 0
      * @return Presigned URL string that can be used as the authorization token for database connection
-     * @throws Exception if parameters are invalid or signing fails
+     * @throws ApiException if parameters are invalid or signing fails
      */
-    public static String buildAuthToken(
-            ApiClient apiClient,
-            String dbUser,
-            String instanceId,
-            int expires
-    ) throws Exception {
+    public static String buildAuthToken(ApiClient apiClient, String dbUser, String instanceId, int expires) throws ApiException {
+        // Parameter validation
         if (apiClient == null) {
             throw new IllegalArgumentException("apiClient must not be null");
         }
-        return buildAuthToken(apiClient.getCredentials(), apiClient.getRegion(),
-                dbUser, instanceId, expires, apiClient.getDisableSSL());
-    }
 
-    /**
-     * Generate an authorization token for database connection (used as password).
-     * Uses HTTPS by default.
-     *
-     * @param credentials Credentials containing AccessKey and SecretKey for signing
-     * @param region      Region, e.g., "cn-beijing"
-     * @param dbUser      Database user account
-     * @param instanceId  Database instance ID
-     * @param expires     Expiration time in seconds, defaults to 900 seconds (15 minutes) if <= 0
-     * @return Presigned URL string that can be used as the authorization token for database connection
-     * @throws Exception if parameters are invalid or signing fails
-     */
-    public static String buildAuthToken(
-            Credentials credentials,
-            String region,
-            String dbUser,
-            String instanceId,
-            int expires
-    ) throws Exception {
-        return buildAuthToken(credentials, region, dbUser, instanceId, expires, false);
-    }
-
-    /**
-     * Generate an authorization token for database connection (used as password).
-     *
-     * @param credentials Credentials containing AccessKey and SecretKey for signing
-     * @param region      Region, e.g., "cn-beijing"
-     * @param dbUser      Database user account
-     * @param instanceId  Database instance ID
-     * @param expires     Expiration time in seconds, defaults to 900 seconds (15 minutes) if <= 0
-     * @param disableSSL  If true, use http:// scheme; otherwise use https://
-     * @return Presigned URL string that can be used as the authorization token for database connection
-     * @throws Exception if parameters are invalid or signing fails
-     */
-    public static String buildAuthToken(
-            Credentials credentials,
-            String region,
-            String dbUser,
-            String instanceId,
-            int expires,
-            boolean disableSSL
-    ) throws Exception {
-        // Parameter validation
-        if (credentials == null ||
-                StringUtils.isEmpty(credentials.getAccessKey()) ||
-                StringUtils.isEmpty(credentials.getSecretKey())) {
-            throw new IllegalArgumentException("credentials must not be null and must contain valid access key and secret key");
-        }
-
-        if (StringUtils.isEmpty(region)) {
+        if (StringUtils.isEmpty(apiClient.getRegion())) {
             throw new IllegalArgumentException("region must not be empty");
         }
 
@@ -111,56 +58,41 @@ public static String buildAuthToken(
             expires = DEFAULT_EXPIRES_SECONDS;
         }
 
-        // Build regional endpoint
-        String endpoint = DefaultEndpointProvider.getRegionalEndpoint(SERVICE_NAME, region);
-
-        // Build query parameters
-        Map<String, String> queryParams = new HashMap<>();
-        queryParams.put("Action", ACTION);
-        queryParams.put("Version", VERSION);
-        queryParams.put("X-Expires", String.valueOf(expires));
-        queryParams.put("DBUser", dbUser);
-        queryParams.put("InstanceId", instanceId);
-
-        // Create signature object
-        VolcstackSign sign = new VolcstackSign(credentials);
-        sign.setRegion(region);
-        sign.setService(SERVICE_NAME);
-        sign.setMethod("GET");
-
-        // Generate presigned URL with host signing
-        Map<String, String> presignedParams = sign.presign(queryParams, endpoint);
-
-        // Build complete URL
-        String scheme = disableSSL ? "http" : "https";
-        return buildUrl(scheme, endpoint, presignedParams);
-    }
-
-    /**
-     * Build complete URL with scheme, host, and query parameters.
-     *
-     * @param scheme          URL scheme ("http" or "https")
-     * @param endpoint        Host endpoint (e.g., "rds-mysql.cn-beijing.volcengineapi.com")
-     * @param presignedParams Presigned query parameters
-     * @return Complete URL string
-     */
-    private static String buildUrl(String scheme, String endpoint, Map<String, String> presignedParams) {
-        StringBuilder url = new StringBuilder();
-        url.append(scheme).append("://").append(endpoint).append("?");
-
-        // Sort parameter keys
-        List<String> keys = new ArrayList<>(presignedParams.keySet());
-        Collections.sort(keys);
-
-        for (int i = 0; i < keys.size(); i++) {
-            String key = keys.get(i);
-            String value = presignedParams.get(key);
-            url.append(key).append("=").append(value);
-            if (i < keys.size() - 1) {
-                url.append("&");
-            }
-        }
-
-        return url.toString();
+        // Use StandardEndpointProvider to resolve endpoint (handles regionalization + dual-stack)
+        StandardEndpointProvider endpointProvider = new StandardEndpointProvider();
+        ResolveEndpointOption option = new ResolveEndpointOption();
+        option.setService(SERVICE_NAME);
+        option.setRegion(apiClient.getRegion());
+        option.setUseDualStack(apiClient.getUseDualStack());
+        ResolvedEndpoint resolved = endpointProvider.endpointFor(option);
+        String endpoint = resolved.getEndpoint();
+
+        // SSL handling, ResolveEndpointInterceptor dose not support this
+        String schema = apiClient.getDisableSSL() ? "http" : "https";
+
+        // Build InterceptorContext with presigned flag
+        InterceptorContext context = new InterceptorContext(apiClient.getHttpClient(), null);
+        context.setApiClient(apiClient);
+
+        RequestInterceptorContext reqCtx = context.getRequestContext();
+        reqCtx.setPresigned(true);
+        reqCtx.setSchema(schema);
+        reqCtx.setHost(endpoint);
+        reqCtx.setMethod("GET");
+        reqCtx.setServiceInfo(new ServiceInfo(SERVICE_NAME, "GET"));
+        reqCtx.setHeaderParams(new HashMap<>());
+
+        List<Pair> queryParams = new ArrayList<>();
+        queryParams.add(new Pair("Action", ACTION));
+        queryParams.add(new Pair("Version", VERSION));
+        queryParams.add(new Pair("X-Expires", String.valueOf(expires)));
+        queryParams.add(new Pair("DBUser", dbUser));
+        queryParams.add(new Pair("InstanceId", instanceId));
+        reqCtx.setQueryParams(queryParams);
+
+        // Execute sign interceptor for presigning
+        new SignRequestInterceptor().intercept(context);
+
+        return reqCtx.getPresignedUrl();
     }
 }

volcengine-java-sdk-core/src/main/java/com/volcengine/interceptor/RequestInterceptorContext.java

@@ -22,6 +22,9 @@ public class RequestInterceptorContext {
     private ProgressRequestBody.ProgressRequestListener progressRequestListener;
     private boolean isCommon;
 
+    private boolean presigned = false;
+    private String presignedUrl;
+
     private ServiceInfo serviceInfo;
     private Request request;
 
@@ -120,4 +123,20 @@ public Request getRequest() {
     public void setRequest(Request request) {
         this.request = request;
     }
+
+    public boolean isPresigned() {
+        return presigned;
+    }
+
+    public void setPresigned(boolean presigned) {
+        this.presigned = presigned;
+    }
+
+    public String getPresignedUrl() {
+        return presignedUrl;
+    }
+
+    public void setPresignedUrl(String presignedUrl) {
+        this.presignedUrl = presignedUrl;
+    }
 }

volcengine-java-sdk-core/src/main/java/com/volcengine/interceptor/SignRequestInterceptor.java

@@ -14,8 +14,7 @@
 import org.apache.commons.lang.StringUtils;
 
 import java.io.IOException;
-import java.util.List;
-import java.util.Map;
+import java.util.*;
 
 public class SignRequestInterceptor implements RequestInterceptor {
 
@@ -35,17 +34,8 @@ public InterceptorContext intercept(InterceptorContext context) throws ApiExcept
         ServiceInfo serviceInfo = context.getRequestContext().getServiceInfo();
         String[] authNames = context.getRequestContext().getAuthNames();
         RequestBody reqBody = context.getRequestContext().getRequestBody();
-        ProgressRequestBody.ProgressRequestListener progressRequestListener = context.getInitInterceptorContext().getProgressRequestListener();
 
         //sign
-        final Buffer buffer = new Buffer();
-        try {
-            if (reqBody != null) {
-                reqBody.writeTo(buffer);
-            }
-        } catch (IOException e) {
-            throw new ApiException(e);
-        }
         VolcstackSign volcengineSign = new VolcstackSign();
         if (context.getApiClient().getCredentials() != null) {
             volcengineSign.setCredentials(context.getApiClient().getCredentials());
@@ -74,8 +64,39 @@ public InterceptorContext intercept(InterceptorContext context) throws ApiExcept
         if (StringUtils.isEmpty(volcengineSign.getRegion())) {
             throw new RuntimeException("Region must set when ApiClient init");
         }
+
+        // Presigned branch: aligned with Go SDK's `if req.IsPresigned() { signedQuery := c1.SignUrl(...) }`
+        if (context.getRequestContext().isPresigned()) {
+            Map<String, String> queryParamsMap = new HashMap<>();
+            for (Pair p : queryParams) {
+                queryParamsMap.put(p.getName(), p.getValue());
+            }
+
+            String host = context.getRequestContext().getHost();
+            try {
+                Map<String, String> presignedParams = volcengineSign.presign(queryParamsMap, host);
+                String presignedUrl = buildPresignedUrl(
+                        context.getRequestContext().getSchema(), host, presignedParams);
+                context.getRequestContext().setPresignedUrl(presignedUrl);
+            } catch (Exception e) {
+                throw new ApiException(e);
+            }
+            return context;
+        }
+
+        // Normal sign branch: aligned with Go SDK's `r := c1.Sign(req.HTTPRequest); req.HTTPRequest.Header = r.Header`
+        final Buffer buffer = new Buffer();
+        try {
+            if (reqBody != null) {
+                reqBody.writeTo(buffer);
+            }
+        } catch (IOException e) {
+            throw new ApiException(e);
+        }
         volcengineSign.applyToParams(queryParams, headerParams, buffer.readUtf8());
 
+        ProgressRequestBody.ProgressRequestListener progressRequestListener = context.getInitInterceptorContext().getProgressRequestListener();
+
         //build final call
         StringBuilder url = new StringBuilder();
         url.append(context.getRequestContext().getSchema());
@@ -101,4 +122,23 @@ public InterceptorContext intercept(InterceptorContext context) throws ApiExcept
         context.getRequestContext().setRequest(request);
         return context;
     }
+
+    private static String buildPresignedUrl(String scheme, String host, Map<String, String> presignedParams) {
+        StringBuilder url = new StringBuilder();
+        url.append(scheme).append("://").append(host).append("?");
+
+        List<String> keys = new ArrayList<>(presignedParams.keySet());
+        Collections.sort(keys);
+
+        for (int i = 0; i < keys.size(); i++) {
+            String key = keys.get(i);
+            String value = presignedParams.get(key);
+            url.append(key).append("=").append(value);
+            if (i < keys.size() - 1) {
+                url.append("&");
+            }
+        }
+
+        return url.toString();
+    }
 }