]> git.apps.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8ce9c07) | patch
rgw: evaluate_iam_policies() handles account root user
authorCasey Bodley <cbodley@redhat.com>
Thu, 1 Feb 2024 02:51:25 +0000 (21:51 -0500)
committerCasey Bodley <cbodley@redhat.com>
Wed, 10 Apr 2024 17:09:15 +0000 (13:09 -0400)
commit180f0b7b66a37e4aa5221e68882d009bed686b58
tree5214c57f0f1dceeb2508c1a8653f3dd271a4a7a3tree | snapshot
parent8ce9c0769f0de31ac4a827684aef4f6f441a369fcommit | diff
rgw: evaluate_iam_policies() handles account root user

> By default, all requests are implicitly denied with the exception of
> the AWS account root user, which has full access.

the account root user turns an implicit deny from identity policy into
an allow, though other policies can still deny explicitly

Signed-off-by: Casey Bodley <cbodley@redhat.com>
src/rgw/rgw_common.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.