rgw/sts: fixes getsessiontoken authenticated with LDAP/Keystone,

author Pritha Srivastava <prsrivas@redhat.com>

Thu, 11 Mar 2021 12:57:45 +0000 (18:27 +0530)

committer Casey Bodley <cbodley@redhat.com>

Tue, 17 Oct 2023 15:25:08 +0000 (11:25 -0400)
author Pritha Srivastava <prsrivas@redhat.com>
Thu, 11 Mar 2021 12:57:45 +0000 (18:27 +0530)
committer Casey Bodley <cbodley@redhat.com>
Tue, 17 Oct 2023 15:25:08 +0000 (11:25 -0400)
diff --git a/src/rgw/rgw_rest_s3.cc b/src/rgw/rgw_rest_s3.cc

index fe45f6c71d7777d5a1dc80ff52e182680802a871..c25c5d9ddd4ae21bc4372e9bbf19e51700ab0aad 100644 (file)
--- a/src/rgw/rgw_rest_s3.cc
+++ b/src/rgw/rgw_rest_s3.cc
@@ -5954,7 +5954,7 @@ rgw::auth::s3::STSEngine::authenticate(
    if (token.acct_type == TYPE_KEYSTONE || token.acct_type == TYPE_LDAP) {
      auto apl = remote_apl_factory->create_apl_remote(cct, s, get_acl_strategy(),
                                              get_creds_info(token));
-    return result_t::grant(std::move(apl), completer_factory(boost::none));
+    return result_t::grant(std::move(apl), completer_factory(token.secret_access_key));
    } else if (token.acct_type == TYPE_ROLE) {
      t_attrs.user_id = std::move(token.user); // This is mostly needed to assign the owner of a bucket during its creation
      t_attrs.token_policy = std::move(token.policy);
author	Pritha Srivastava <prsrivas@redhat.com>
	Thu, 11 Mar 2021 12:57:45 +0000 (18:27 +0530)
committer	Casey Bodley <cbodley@redhat.com>
	Tue, 17 Oct 2023 15:25:08 +0000 (11:25 -0400)