]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8ad1a5b) | patch
rgw: fix return value of auth v2/v4 19310/head
authorBingyin Zhang <zhangbingyin@cloudin.cn>
Thu, 14 Dec 2017 08:38:35 +0000 (16:38 +0800)
committerBingyin Zhang <zhangbingyin@cloudin.cn>
Thu, 14 Dec 2017 08:38:35 +0000 (16:38 +0800)
commitce42f1e8f51b71b242c17077d01fc3009d370e78
treede4ce398e6d70cdb65937d5460433cb8b0a78b14tree | snapshot
parent8ad1a5b642f1c5db3b2d103dc9e64e3c8ad70a27commit | diff
rgw: fix return value of auth v2/v4

* The return value of auth v2/v4 in RGW is different from that in AWS:
*     1. When 'Expires' is missing in auth v2 query string request, AWS
*     returns AccessDenied while RGW returns SignatureDoesNotMatch;
*     2. When 'X-Amz-Expires' is missing in auth v4 query string
*     request, AWS returns AuthorizationQueryParametersError while RGW
*     returns RequestTimeTooSkewed;
* Changes:
*     1. When 'Expires' is missing in auth v2 query string request,
*     change RGW's return value to AccessDenied;
*     2. When 'X-Amz-Expires' is missing in auth v4 query string
*     request, change RGW's return value to AccessDenied;
*     3. remove time skew check from parse_v4_query_string;

Fixes: http://tracker.ceph.com/issues/22439
Signed-off-by: Bingyin Zhang <zhangbingyin@cloudin.cn>
src/rgw/rgw_auth_s3.cc diff | blob | history
src/rgw/rgw_rest_s3.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.