]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b8cf401) | patch
rgw: fix return value of auth v2/v4 20072/head
authorBingyin Zhang <zhangbingyin@cloudin.cn>
Thu, 14 Dec 2017 08:38:35 +0000 (16:38 +0800)
committerNathan Cutler <ncutler@suse.com>
Tue, 6 Mar 2018 22:18:51 +0000 (23:18 +0100)
commitaed777066987702c2df38b5b610beca7fb016fd2
tree3274b25d3e3461ff5ea104626fad37f24b27739dtree | snapshot
parentb8cf40138cbf4b462d6e24512a2b58f294d537d4commit | diff
rgw: fix return value of auth v2/v4

* The return value of auth v2/v4 in RGW is different from that in AWS:
*     1. When 'Expires' is missing in auth v2 query string request, AWS
*     returns AccessDenied while RGW returns SignatureDoesNotMatch;
*     2. When 'X-Amz-Expires' is missing in auth v4 query string
*     request, AWS returns AuthorizationQueryParametersError while RGW
*     returns RequestTimeTooSkewed;
* Changes:
*     1. When 'Expires' is missing in auth v2 query string request,
*     change RGW's return value to AccessDenied;
*     2. When 'X-Amz-Expires' is missing in auth v4 query string
*     request, change RGW's return value to AccessDenied;
*     3. remove time skew check from parse_v4_query_string;

Fixes: http://tracker.ceph.com/issues/22439
Signed-off-by: Bingyin Zhang <zhangbingyin@cloudin.cn>
(cherry picked from commit ce42f1e8f51b71b242c17077d01fc3009d370e78)
src/rgw/rgw_auth_s3.cc diff | blob | history
src/rgw/rgw_rest_s3.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.