feat(simplestorage)!: achieve feature parity with TypeScript SDK

[Xe]

Summary

• Add Head, GetPresignedUrl, and extended Put/Get/List/CreateBucket options to match the TypeScript @tigrisdata/storage SDK.
• Replace racy WithAllowOverwrite(false) (Head-then-Put) with the server-side atomic If-Match: "" header, and surface the snapshot version returned by CreateBucketSnapshot.
• Switch simplestorage.ListBucketSnapshots to the dedicated storage.Client.ListBucketSnapshots wrapper.

Details

New object operations

• Head(ctx, key, opts...) — metadata-only retrieval that also returns a presigned GET URL.
• GetPresignedUrl(ctx, key, opts...) — GET or PUT URL generation via WithPresignedOperation, WithPresignedExpiresIn, and WithPresignedContentType.

Extended options

• Put: WithAccessType, WithRandomSuffix, WithAllowOverwrite, WithContentDisposition, WithMultipartUpload (via transfermanager), WithUploadProgress.
• Get: WithResponseContentType, WithResponseContentDisposition, WithResponseCacheControl, WithQuerySnapshotVersion.
• List: WithDelimiter, WithPrefix, WithPaginationToken. Return type changes to *ListResult (carries CommonPrefixes, PaginationToken, HasMore).
• CreateBucket: WithBucketAccess, WithDefaultTier, WithConsistentRead, WithForkSourceSnapshot.

Correctness fixes

• WithAllowOverwrite(false) now uses tigrisheaders.WithCreateObjectIfNotExists() (If-Match: "") instead of a Head-then-Put check that was racy under concurrent writers.
• storage.Client.CreateBucketSnapshot now returns *CreateBucketSnapshotOutput (embedding *s3.CreateBucketOutput) with a SnapshotVersion field pulled from the X-Tigris-Snapshot-Version response header. simplestorage.CreateBucketSnapshot surfaces it through SnapshotInfo.Version.
• simplestorage.ListBucketSnapshots uses the dedicated wrapper and leaves SnapshotInfo.Name empty, since the listing API does not return the user-provided description.

Breaking changes

• storage.Client.CreateBucketSnapshot: return type changed from *s3.CreateBucketOutput to *CreateBucketSnapshotOutput. The new type embeds *s3.CreateBucketOutput so field access is unchanged; callers that bound the value to a concrete *s3.CreateBucketOutput variable need to re-type it.
• simplestorage.Client.List: return type changed from []Object to *ListResult.

Non-goals (excluded from parity): browser-side uploads, force-delete for buckets, AbortController-style cancellation (use context.Context).

Test plan

• Code compiles with go build ./...
• go vet ./... clean
• go test ./... passes
• Code formatted with npm run format
• Manual testing against a real Tigris bucket (especially Head, GetPresignedUrl, CreateBucketSnapshot version header, and Put with WithAllowOverwrite(false) under concurrent writers)

[greptile-apps]

Greptile Summary

This PR achieves feature parity with the TypeScript SDK by adding Head, GetPresignedUrl, multipart upload support, ACL control, pagination, and snapshot version surfacing — replacing the racy Head-then-Put overwrite check with a correct server-side If-Match: "" guard. The overall approach is sound, but there is one correctness issue to address before merging.

• P1 — WithAllowOverwrite(false) silently no-ops on multipart uploads: when useMultipart is true, o.S3Options (which carries the If-Match: "" header) is never forwarded to tm.UploadObject, so the atomic no-overwrite guarantee is bypassed entirely for large files (simplestorage/client.go).

Confidence Score: 4/5

Safe to merge after fixing the multipart + WithAllowOverwrite(false) bug; all other findings are P2 test-quality issues.

One P1 defect: the multipart upload path drops o.S3Options entirely, silently invalidating the WithAllowOverwrite(false) no-overwrite contract for large files. All other findings (test cleanup pattern) are P2.

simplestorage/client.go (multipart branch), simplestorage/client_new_features_test.go (env setup/cleanup pattern)

Important Files Changed

Filename	Overview
simplestorage/client.go	Major expansion adding Head, GetPresignedUrl, multipart upload, ACL, progress tracking, and new option types; P1 bug: multipart path drops o.S3Options, silently bypassing WithAllowOverwrite(false)
client.go	Adds S3() accessor, CreateBucketSnapshotOutput type, and extracts X-Tigris-Snapshot-Version from response headers — looks correct
simplestorage/buckets.go	CreateBucket now passes ACL via input, CreateBucketSnapshot surfaces SnapshotVersion, ListBucketSnapshots switched to dedicated wrapper — clean changes
simplestorage/bucket_options.go	Adds WithDefaultTier, WithConsistentRead, WithForkSourceSnapshot, WithBucketAccess options and bucketACL helper — straightforward and correct
tigrisheaders/tigrisheaders.go	Adds WithStorageClass, WithConsistentRead, and WithForkSourceBucketSnapshot header helpers — correct
simplestorage/client_new_features_test.go	New test file; setupEnv/cleanup pattern is broken in TestHead, TestGetPresignedUrl, and TestList — env vars are set after assertions and never cleaned up

Comments Outside Diff (2)

1. simplestorage/client.go, line 802-814 (link)

   Multipart path silently drops o.S3Options, breaking WithAllowOverwrite(false)

   When useMultipart is true, o.S3Options is never passed to tm.UploadObject, so any option that was appended to that slice — most critically tigrisheaders.WithCreateObjectIfNotExists() (the If-Match: "" guard added by WithAllowOverwrite(false)) — is silently discarded. A caller that combines WithMultipartUpload + WithAllowOverwrite(false) will get an unconditional overwrite instead of the expected atomic no-overwrite guarantee.

   The transfermanager.UploadObjectInput type does not appear to have a native per-request options field, so the right fix is to pass the options when constructing the manager or fall back to the single-part path for the no-overwrite case:

   if useMultipart {
       tm := transfermanager.New(c.cli.S3(), func(o *transfermanager.Options) {
           o.ClientOptions = append(o.ClientOptions, o.S3Options...)
       })
       ...

   or simply document that WithAllowOverwrite(false) is incompatible with WithMultipartUpload and return an error when both are set.

2. simplestorage/client_new_features_test.go, line 1424-1427 (link)

   setupEnv is deferred instead of called immediately; cleanup func is discarded

   cleanup := tt.setupEnv assigns the function itself; defer cleanup() then calls it (i.e. runs os.Setenv) on the way out of the test, after all assertions have already run. The inner cleanup function (os.Unsetenv) returned by that call is silently discarded, leaving the env var set for subsequent test iterations.

   The same pattern appears in TestGetPresignedUrl (line ~1495) and TestList (line ~1728).

   // correct pattern
   cleanup := tt.setupEnv()   // call immediately so env is set before New()
   defer cleanup()            // cleanup fires after assertions

_{Reviews (1): Last reviewed commit: "feat(simplestorage)!: achieve feature pa..." | Re-trigger Greptile}

[Copilot]

Pull request overview

This PR expands the Go simplestorage API to align with the TypeScript @tigrisdata/storage SDK by adding new operations (Head + presigned URL generation), extending Put/Get/List/CreateBucket options, improving overwrite correctness, and surfacing snapshot versions returned by CreateBucketSnapshot.

Changes:

• Add Head and GetPresignedUrl, plus extended options for Put/Get/List/CreateBucket to match TS SDK behavior.
• Replace racy “Head-then-Put” no-overwrite logic with atomic server-side If-Match: "" via tigrisheaders.WithCreateObjectIfNotExists().
• Surface snapshot versions from CreateBucketSnapshot and switch ListBucketSnapshots to the dedicated storage wrapper.

Reviewed changes

Copilot reviewed 10 out of 11 changed files in this pull request and generated 9 comments.

Show a summary per file

File	Description
tigrisheaders/tigrisheaders.go	Adds header helpers for storage class, consistency, and fork-from-snapshot support.
simplestorage/client.go	Implements Head, GetPresignedUrl, extended options, multipart Put support, and changes List return type.
simplestorage/bucket_options.go	Adds new bucket options (default tier, consistent read, fork source snapshot, bucket ACL).
simplestorage/buckets.go	Applies bucket ACL on create, surfaces snapshot version on snapshot creation, uses dedicated snapshot list wrapper.
simplestorage/buckets_test.go	Adds unit tests for new bucket options.
simplestorage/client_new_features_test.go	Adds tests for new simplestorage features/options and response types.
simplestorage/client_example_test.go	Adds documentation examples for new client APIs/options (compile-only examples).
client.go	Adds Client.S3() accessor and changes CreateBucketSnapshot to return snapshot version.
README.md	Documents new SnapshotVersion field on snapshot creation output.
go.mod / go.sum	Bumps AWS SDK deps and adds transfermanager dependency.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

In these subtests, setupEnv is never executed before creating the client: cleanup := tt.setupEnv stores the function instead of calling it, and defer cleanup() only runs at the end (setting the env var late and never running the returned unset function). This both breaks the test (bucket env var not set) and leaks TIGRIS_STORAGE_BUCKET into subsequent tests. Call tt.setupEnv() up-front and defer the returned cleanup func.

Suggested change

	cleanup := tt.setupEnv
	cleanup := tt.setupEnv()

[Copilot]

Same issue here: setupEnv isn't invoked and the returned cleanup closure is never called, so the env var is set too late and not unset. This will make the test order-dependent and can cause failures when TIGRIS_STORAGE_BUCKET is required by New(). Call tt.setupEnv() and defer the returned cleanup.

Suggested change

	cleanup := tt.setupEnv
	if cleanup == nil {
	cleanup = func() func() { return func() {} }
	cleanup := func() {}
	if tt.setupEnv != nil {
	cleanup = tt.setupEnv()

[Copilot]

These GetPresignedUrl cases expect success (wantErr: false) but presigning requires AWS credentials; in environments without TIGRIS/AWS creds this will fail non-deterministically. Consider either (a) using skipIfNoCreds(t) like other integration tests in this repo, (b) injecting static dummy credentials into the client config for presign-only tests, or (c) changing expectations to wantErr: true when creds are missing.

[Copilot]

When useMultipart is true, the upload goes through transfermanager.UploadObject but none of o.S3Options are applied. This means headers like WithCreateObjectIfNotExists() (used for WithAllowOverwrite(false)) are silently ignored for multipart uploads, reintroducing the overwrite race/behavior difference. Ensure the multipart path also applies the same request headers/options (or explicitly disable multipart when AllowOverwrite=false if the transfermanager can't support it).

[Copilot]

generateRandomSuffix ignores the error from rand.Read, and will also panic for odd length values because length/2 truncates (hex string can be shorter than length before slicing). Handle the rand.Read error and compute the byte length as (length+1)/2 (or enforce an even length) before slicing.

Suggested change

	b := make([]byte, length/2)
	rand.Read(b)
	if length <= 0 {
	return ""
	}
	b := make([]byte, (length+1)/2)
	if _, err := rand.Read(b); err != nil {
	return ""
	}

[Copilot]

This PR changes Put's return type from *Object to *PutResponse, which is a breaking API change for simplestorage callers. It’s not listed under the PR’s “Breaking changes” section; please document it there (or keep the old return type / provide a compatibility shim) so downstream users aren’t surprised.

[Copilot]

PutResponse.Modified is described as a “Last modified time”, but it is currently set to time.Now(), which may not match the server's recorded timestamp (and can be misleading across clock skew/timezones). Consider either leaving it unset/zero, renaming the field to clarify it's the client timestamp, or doing an explicit HEAD to retrieve authoritative metadata (if the extra call is acceptable).

[Copilot]

WithBucketAccess comment says AccessPrivate is the default, but BucketOptions.defaults() does not initialize Access (zero value ""), which leads bucketACL to send an empty canned ACL instead of "private". If private is the intended default, initialize Access: AccessPrivate in defaults (and consider adding a test asserting the default).

[Copilot]

Same setup/cleanup bug as other tests: cleanup := tt.setupEnv doesn't invoke setupEnv before creating the client, and defer cleanup() only sets the env var at the end while never calling the returned unset func. Call tt.setupEnv() and defer the returned cleanup closure to avoid env leakage and ErrNoBucketName failures.

Suggested change

	cleanup := tt.setupEnv
	if cleanup == nil {
	cleanup = func() func() { return func() {} }
	cleanup := func() {}
	if tt.setupEnv != nil {
	cleanup = tt.setupEnv()