rgw-bucket-logging: handle presigned SigV2 requests

author N Balachandran <nithya.balachandran@ibm.com>

Wed, 22 Apr 2026 09:56:29 +0000 (15:26 +0530)

committer Nithya Balachandran <nithya.balachandran@ibm.com>

Tue, 28 Apr 2026 06:17:10 +0000 (06:17 +0000)
author N Balachandran <nithya.balachandran@ibm.com>
Wed, 22 Apr 2026 09:56:29 +0000 (15:26 +0530)
committer Nithya Balachandran <nithya.balachandran@ibm.com>
Tue, 28 Apr 2026 06:17:10 +0000 (06:17 +0000)
diff --git a/s3tests/functional/test_s3.py b/s3tests/functional/test_s3.py

index 9168027162bfabac1ad45ee6bc8b80096a02f38a..ddc763b91812208b94ff2445b6b0662338e5ec31 100644 (file)
--- a/s3tests/functional/test_s3.py
+++ b/s3tests/functional/test_s3.py
@@ -15456,7 +15456,7 @@ def test_bucket_logging_bucket_auth_type():
      assert _verify_records(body, src_bucket_name, 'REST.GET.OBJECT', [key], "Standard", 1)
      assert _verify_record_field(body, src_bucket_name, 'REST.GET.OBJECT', key, "Standard", "AuthType", "-")
  
-    #AuthType "QueryString" (presigned)
+    #AuthType "QueryString" (presigned SigV4)
      params = {'Bucket': src_bucket_name, 'Key': key}
      url = client.generate_presigned_url(ClientMethod='get_object', Params=params, ExpiresIn=100000, HttpMethod='GET')
  
@@ -15475,7 +15475,29 @@ def test_bucket_logging_bucket_auth_type():
      body = _get_body(response)
      assert _verify_records(body, src_bucket_name, 'REST.GET.OBJECT', [key], "Standard", 1)
      assert _verify_record_field(body, src_bucket_name, 'REST.GET.OBJECT', key, "Standard", "AuthType", "QueryString")
+    assert _verify_record_field(body, src_bucket_name, 'REST.GET.OBJECT', key, "Standard", "SigVersion", "SigV4")
  
+    #AuthType "QueryString" (presigned SigV2)
+    client_v2 = get_v2_client()
+    params = {'Bucket': src_bucket_name, 'Key': key}
+    url = client_v2.generate_presigned_url(ClientMethod='get_object', Params=params, ExpiresIn=100000, HttpMethod='GET')
+
+    res = requests.options(url, verify=get_config_ssl_verify()).__dict__
+    assert res['status_code'] == 400
+
+    res = requests.get(url, verify=get_config_ssl_verify()).__dict__
+    assert res['status_code'] == 200
+
+    _flush_logs(client, src_bucket_name)
+    response = client.list_objects_v2(Bucket=log_bucket_name)
+    log_keys = _get_keys(response)
+
+    log_key = log_keys[-1]
+    response = client.get_object(Bucket=log_bucket_name, Key=log_key)
+    body = _get_body(response)
+    assert _verify_records(body, src_bucket_name, 'REST.GET.OBJECT', [key], "Standard", 1)
+    assert _verify_record_field(body, src_bucket_name, 'REST.GET.OBJECT', key, "Standard", "AuthType", "QueryString")
+    assert _verify_record_field(body, src_bucket_name, 'REST.GET.OBJECT', key, "Standard", "SigVersion", "SigV2")
  
  def _bucket_logging_key_filter(log_type):
      src_bucket_name = get_new_bucket_name()
author	N Balachandran <nithya.balachandran@ibm.com>
	Wed, 22 Apr 2026 09:56:29 +0000 (15:26 +0530)
committer	Nithya Balachandran <nithya.balachandran@ibm.com>
	Tue, 28 Apr 2026 06:17:10 +0000 (06:17 +0000)