From: Pritha Srivastava <prsrivas@redhat.com>
Date: Thu, 11 Mar 2021 12:57:45 +0000 (+0530)
Subject: rgw/sts: fixes getsessiontoken authenticated with LDAP/Keystone,
X-Git-Tag: v17.1.0~1576^2
X-Git-Url: http://git-server-git.apps.pok.os.sepia.ceph.com/?a=commitdiff_plain;h=f1407efb903bbb264a68ed962086194feaed0b44;p=ceph.git

rgw/sts: fixes getsessiontoken authenticated with LDAP/Keystone,
when object is uploaded via chunked encoding.

fixes: https://tracker.ceph.com/issues/49797

Signed-off-by: Pritha Srivastava <prsrivas@redhat.com>
---

diff --git a/src/rgw/rgw_rest_s3.cc b/src/rgw/rgw_rest_s3.cc
index 3cdf3afd5d27..a4db2df95a68 100644
--- a/src/rgw/rgw_rest_s3.cc
+++ b/src/rgw/rgw_rest_s3.cc
@@ -5930,7 +5930,7 @@ rgw::auth::s3::STSEngine::authenticate(
   if (token.acct_type == TYPE_KEYSTONE || token.acct_type == TYPE_LDAP) {
     auto apl = remote_apl_factory->create_apl_remote(cct, s, get_acl_strategy(),
                                             get_creds_info(token));
-    return result_t::grant(std::move(apl), completer_factory(boost::none));
+    return result_t::grant(std::move(apl), completer_factory(token.secret_access_key));
   } else if (token.acct_type == TYPE_ROLE) {
     auto apl = role_apl_factory->create_apl_role(cct, s, r, user_id, token.policy, token.role_session, token.token_claims, token.issued_at);
     return result_t::grant(std::move(apl), completer_factory(token.secret_access_key));