[#192 ] Fix frostfs dependencies

Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
[#192 ] Add handling expiration lifecycle
2023-01-12 16:47:04 +03:00 · 2023-01-12 16:38:59 +03:00 · 2023-01-12 16:37:48 +03:00 · 2023-01-12 16:37:48 +03:00
128 changed files with 2067 additions and 2370 deletions
--- a/.docker/Dockerfile
+++ b/.docker/Dockerfile
@ -1,7 +1,7 @@
 FROM golang:1.19 as builder
 ARG BUILD=now
-ARG REPO=git.frostfs.info/TrueCloudLab/frostfs-s3-gw
+ARG REPO=github.com/TrueCloudLab/frostfs-s3-gw
 ARG VERSION=dev
 WORKDIR /src
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@ -1,45 +0,0 @@
 ---
 name: Bug report
 about: Create a report to help us improve
 title: ''
 labels: community, triage, bug
 assignees: ''
 ---
 <!--- Provide a general summary of the issue in the Title above -->
 ## Expected Behavior
 <!--- If you're describing a bug, tell us what should happen -->
 <!--- If you're suggesting a change/improvement, tell us how it should work -->
 ## Current Behavior
 <!--- If describing a bug, tell us what happens instead of the expected behavior -->
 <!--- If suggesting a change/improvement, explain the difference from current behavior -->
 ## Possible Solution
 <!--- Not obligatory -->
 <!--- If no reason/fix/additions for the bug can be suggested, -->
 <!--- uncomment the following phrase: -->
 <!--- No fix can be suggested by a QA engineer. Further solutions shall be up to developers. -->
 ## Steps to Reproduce (for bugs)
 <!--- Provide a link to a live example, or an unambiguous set of steps to -->
 <!--- reproduce this bug. -->
 1.
 ## Context
 <!--- How has this issue affected you? What are you trying to accomplish? -->
 <!--- Providing context helps us come up with a solution that is most useful in the real world -->
 ## Regression
 <!-- Is this issue a regression? (Yes / No) -->
 <!-- If Yes, optionally please include version or commit id or PR# that caused this regression, if you have these details. -->
 ## Your Environment
 <!--- Include as many relevant details about the environment you experienced the bug in -->
 * Version used:
 * Server setup and configuration:
 * Operating System and version (`uname -a`):
--- a/.github/ISSUE_TEMPLATE/config.yml
+++ b/.github/ISSUE_TEMPLATE/config.yml
@ -1 +0,0 @@
 blank_issues_enabled: false
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@ -1,20 +0,0 @@
 ---
 name: Feature request
 about: Suggest an idea for this project
 title: ''
 labels: community, triage
 assignees: ''
 ---
 ## Is your feature request related to a problem? Please describe.
 <!--- A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] -->
 ## Describe the solution you'd like
 <!--- A clear and concise description of what you want to happen. -->
 ## Describe alternatives you've considered
 <!--- A clear and concise description of any alternative solutions or features you've considered. -->
 ## Additional context
 <!--- Add any other context or screenshots about the feature request here. -->
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@ -68,7 +68,7 @@ jobs:
    runs-on: ubuntu-20.04
    strategy:
      matrix:
-        go_versions: [ '1.18.x', '1.19.x' ]
+        go_versions: [ '1.17', '1.18.x', '1.19.x' ]
      fail-fast: false
    steps:
      - uses: actions/checkout@v2
--- a/.gitignore
+++ b/.gitignore
@ -21,11 +21,4 @@ coverage.txt
 coverage.html
 # debhelpers
-**/*debhelper*
+**/.debhelper
 # debian package build files
 debian/files
 debian/*.log
 debian/*.substvars
 debian/frostfs-s3-gw/
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -4,30 +4,6 @@ This document outlines major changes between releases.
 ## [Unreleased]
 ### Fixed
 - Get empty bucket CORS from frostfs (TrueCloudLab#36)
 - Don't count pool error on client abort (#35)
 ### Added
 - Return container name in `head-bucket` response (TrueCloudLab#18)
 - Billing metrics (TrueCloudLab#5)
 - Multiple configs support (TrueCloudLab#21)
 - Bucket name resolving policy (TrueCloudLab#25)
 - Support string `Action` and `Resource` fields in `bucketPolicy.Statement` (TrueCloudLab#32)
 - Add new `kludge.use_default_xmlns_for_complete_multipart` config param (TrueCloudLab#40)
 ### Changed
 - Update neo-go to v0.101.0 (#14)
 - Update viper to v1.15.0 (#14)
 - Using multiple servers require only one healthy (TrueCloudLab#12)
 - Update go version to go1.18 (TrueCloudLab#16)
 - Return error on invalid LocationConstraint (TrueCloudLab#23)
 - Place billing metrics to separate url path (TrueCloudLab#26)
 - Add generated deb builder files to .gitignore, and fix typo (TrueCloudLab#28)
 - Limit number of objects to delete at one time (TrueCloudLab#37) 
 - CompleteMultipartUpload handler now sends whitespace characters to keep alive client's connection (#60)
 - Support new system attributes (#64)
 ## [0.26.0] - 2022-12-28
 ### Added
--- a/README.md
+++ b/README.md
@ -6,7 +6,9 @@
 </p>
 ---
-[![Report](https://goreportcard.com/badge/git.frostfs.info/TrueCloudLab/frostfs-s3-gw)](https://goreportcard.com/report/git.frostfs.info/TrueCloudLab/frostfs-s3-gw)
+[![Report](https://goreportcard.com/badge/github.com/TrueCloudLab/frostfs-s3-gw)](https://goreportcard.com/report/github.com/TrueCloudLab/frostfs-s3-gw)
 ![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/TrueCloudLab/frostfs-s3-gw?sort=semver)
 ![License](https://img.shields.io/github/license/TrueCloudLab/frostfs-s3-gw.svg?style=popout)
 # FrostFS S3 Gateway
@ -14,7 +16,7 @@ FrostFS S3 gateway provides API compatible with Amazon S3 cloud storage service.
 ## Installation
-```go get -u git.frostfs.info/TrueCloudLab/frostfs-s3-gw```
+```go get -u github.com/TrueCloudLab/frostfs-s3-gw```
 Or you can call `make` to build it from the cloned repository (the binary will
 end up in `bin/frostfs-s3-gw` with authmate helper in `bin/frostfs-s3-authmate`).
--- a/api/auth/center.go
+++ b/api/auth/center.go
@ -14,12 +14,12 @@ import (
 	"strings"
 	"time"
-	v4 "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/auth/signer/v4"
+	v4 "github.com/TrueCloudLab/frostfs-s3-gw/api/auth/signer/v4"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/cache"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/cache"
-	apiErrors "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	apiErrors "github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/tokens"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/tokens"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	"github.com/aws/aws-sdk-go/aws/credentials"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 )
--- a/api/auth/center_test.go
+++ b/api/auth/center_test.go
@ -5,7 +5,7 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 	"github.com/stretchr/testify/require"
 )
--- a/api/cache/access_control.go
+++ b/api/cache/access_control.go
@ -4,7 +4,7 @@ import (
 	"fmt"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/cache/accessbox.go
+++ b/api/cache/accessbox.go
@ -4,8 +4,8 @@ import (
 	"fmt"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/cache/buckets.go
+++ b/api/cache/buckets.go
@ -4,7 +4,7 @@ import (
 	"fmt"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/cache/cache_test.go
+++ b/api/cache/cache_test.go
@ -3,10 +3,10 @@ package cache
 import (
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	cidtest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id/test"
+	cidtest "github.com/TrueCloudLab/frostfs-sdk-go/container/id/test"
-	oidtest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id/test"
+	oidtest "github.com/TrueCloudLab/frostfs-sdk-go/object/id/test"
 	"github.com/stretchr/testify/require"
 	"go.uber.org/zap"
 	"go.uber.org/zap/zaptest/observer"
--- a/api/cache/names.go
+++ b/api/cache/names.go
@ -4,7 +4,7 @@ import (
 	"fmt"
 	"time"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/cache/objects.go
+++ b/api/cache/objects.go
@ -4,8 +4,8 @@ import (
 	"fmt"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/cache/objects_test.go
+++ b/api/cache/objects_test.go
@ -4,9 +4,9 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	objecttest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/test"
+	objecttest "github.com/TrueCloudLab/frostfs-sdk-go/object/test"
 	"github.com/stretchr/testify/require"
 	"go.uber.org/zap"
 )
--- a/api/cache/objectslist.go
+++ b/api/cache/objectslist.go
@ -6,8 +6,8 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/cache/objectslist_test.go
+++ b/api/cache/objectslist_test.go
@ -4,9 +4,9 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	cidtest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id/test"
+	cidtest "github.com/TrueCloudLab/frostfs-sdk-go/container/id/test"
-	oidtest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id/test"
+	oidtest "github.com/TrueCloudLab/frostfs-sdk-go/object/id/test"
 	"github.com/stretchr/testify/require"
 	"go.uber.org/zap"
 )
--- a/api/cache/system.go
+++ b/api/cache/system.go
@ -4,7 +4,7 @@ import (
 	"fmt"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"github.com/bluele/gcache"
 	"go.uber.org/zap"
 )
--- a/api/data/info.go
+++ b/api/data/info.go
@ -4,9 +4,9 @@ import (
 	"encoding/xml"
 	"time"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 )
 const (
@ -22,8 +22,7 @@ const (
 type (
 	// BucketInfo stores basic bucket data.
 	BucketInfo struct {
-		Name               string // container name from system attribute
+		Name               string
 		Zone               string // container zone from system attribute
 		CID                cid.ID
 		Owner              user.ID
 		Created            time.Time
@ -60,6 +59,13 @@ type (
 	BucketSettings struct {
 		Versioning        string                   `json:"versioning"`
 		LockConfiguration *ObjectLockConfiguration `json:"lock_configuration"`
 		LifecycleConfig   *LifecycleConfig         `json:"lifecycle_configuration"`
 	}
 	// LifecycleConfig stores lifecycle config old and current settings.
 	LifecycleConfig struct {
 		OldConfigurationID   string `json:"old_id"`
 		CurrentConfiguration *LifecycleConfiguration
 	}
 	// CORSConfiguration stores CORS configuration of a request.
@ -125,3 +131,6 @@ func (b BucketSettings) VersioningEnabled() bool {
 func (b BucketSettings) VersioningSuspended() bool {
 	return b.Versioning == VersioningSuspended
 }
 // ExpirationObject returns name of system object for expiration tick object.
 func (o *ObjectInfo) ExpirationObject() string { return ".expiration." + o.Name }
--- a/api/data/lifecycle.go
+++ b/api/data/lifecycle.go
@ -0,0 +1,171 @@
 package data
 import (
 	"encoding/xml"
 	"strings"
 )
 type (
 	LifecycleConfiguration struct {
 		XMLName xml.Name `xml:"http://s3.amazonaws.com/doc/2006-03-01/ LifecycleConfiguration" json:"-"`
 		Rules   []Rule   `xml:"Rule" json:"Rule"`
 	}
 	Rule struct {
 		AbortIncompleteMultipartUpload *AbortIncompleteMultipartUpload `xml:"AbortIncompleteMultipartUpload" json:"AbortIncompleteMultipartUpload"`
 		Expiration                     *Expiration                     `xml:"Expiration" json:"Expiration"`
 		Filter                         *LifecycleRuleFilter            `xml:"Filter" json:"Filter"`
 		ID                             string                          `xml:"ID" json:"ID"`
 		NoncurrentVersionExpiration    *NoncurrentVersionExpiration    `xml:"NoncurrentVersionExpiration" json:"NoncurrentVersionExpiration"`
 		NoncurrentVersionTransitions   []NoncurrentVersionTransition   `xml:"NoncurrentVersionTransition" json:"NoncurrentVersionTransition"`
 		Prefix                         *string                         `xml:"Prefix" json:"Prefix"`
 		Status                         string                          `xml:"Status" json:"Status"`
 		Transitions                    []Transition                    `xml:"Transition" json:"Transition"`
 	}
 	AbortIncompleteMultipartUpload struct {
 		DaysAfterInitiation int64 `xml:"DaysAfterInitiation"`
 	}
 	Expiration struct {
 		Date                      *string `xml:"Date" json:"Date"`
 		Days                      *int64  `xml:"Days" json:"Days"`
 		ExpiredObjectDeleteMarker bool    `xml:"ExpiredObjectDeleteMarker" json:"ExpiredObjectDeleteMarker"`
 	}
 	LifecycleRuleFilter struct {
 		And                   *LifecycleRuleAndOperator `xml:"And" json:"And"`
 		ObjectSizeGreaterThan *int64                    `xml:"ObjectSizeGreaterThan" json:"ObjectSizeGreaterThan"`
 		ObjectSizeLessThan    *int64                    `xml:"ObjectSizeLessThan" json:"ObjectSizeLessThan"`
 		Prefix                *string                   `xml:"Prefix" json:"Prefix"`
 		Tag                   *Tag                      `xml:"Tag" json:"Tag"`
 	}
 	LifecycleRuleAndOperator struct {
 		ObjectSizeGreaterThan *int64  `xml:"ObjectSizeGreaterThan" json:"ObjectSizeGreaterThan"`
 		ObjectSizeLessThan    *int64  `xml:"ObjectSizeLessThan" json:"ObjectSizeLessThan"`
 		Prefix                *string `xml:"Prefix" json:"Prefix"`
 		Tags                  []Tag   `xml:"Tags" json:"Tags"`
 	}
 	Tag struct {
 		Key   string `xml:"Key" json:"Key"`
 		Value string `xml:"Value" json:"Value"`
 	}
 	NoncurrentVersionExpiration struct {
 		NewerNoncurrentVersions *int64 `xml:"NewerNoncurrentVersions" json:"NewerNoncurrentVersions"`
 		NoncurrentDays          *int64 `xml:"NoncurrentDays" json:"NoncurrentDays"`
 	}
 	NoncurrentVersionTransition struct {
 		NewerNoncurrentVersions *int64 `xml:"NewerNoncurrentVersions" json:"NewerNoncurrentVersions"`
 		NoncurrentDays          *int64 `xml:"NoncurrentDays" json:"NoncurrentDays"`
 		StorageClass            string `xml:"StorageClass" json:"StorageClass"`
 	}
 	Transition struct {
 		Date         *string `xml:"Date" json:"Date"`
 		Days         *int64  `xml:"Days" json:"Days"`
 		StorageClass string  `xml:"StorageClass" json:"StorageClass"`
 	}
 	ExpirationObject struct {
 		Expiration        *Expiration
 		RuleID            string
 		LifecycleConfigID string
 	}
 )
 func (r *Rule) RealPrefix() string {
 	if r.Filter == nil {
 		if r.Prefix != nil {
 			return *r.Prefix
 		}
 		return ""
 	}
 	if r.Filter.And == nil {
 		if r.Filter.Prefix != nil {
 			return *r.Filter.Prefix
 		}
 		return ""
 	}
 	if r.Filter.And.Prefix != nil {
 		return *r.Filter.And.Prefix
 	}
 	return ""
 }
 func (r *Rule) NeedTags() bool {
 	if r.Filter == nil {
 		return false
 	}
 	if r.Filter.And == nil {
 		return r.Filter.Tag != nil
 	}
 	return len(r.Filter.And.Tags) != 0
 }
 func (r *Rule) MatchObject(obj *ObjectInfo, tags map[string]string) bool {
 	if r.Filter == nil {
 		if r.Prefix != nil {
 			return strings.HasPrefix(obj.Name, *r.Prefix)
 		}
 		return true
 	}
 	if r.Filter.And == nil {
 		if r.Filter.Prefix != nil && !strings.HasPrefix(obj.Name, *r.Filter.Prefix) {
 			return false
 		}
 		if r.Filter.Tag != nil {
 			if tags == nil {
 				return false
 			}
 			if tagVal := tags[r.Filter.Tag.Key]; tagVal != r.Filter.Tag.Value {
 				return false
 			}
 		}
 		if r.Filter.ObjectSizeLessThan != nil && *r.Filter.ObjectSizeLessThan > 0 && obj.Size >= *r.Filter.ObjectSizeLessThan {
 			return false
 		}
 		if r.Filter.ObjectSizeGreaterThan != nil && obj.Size <= *r.Filter.ObjectSizeGreaterThan {
 			return false
 		}
 		return true
 	}
 	if r.Filter.And.Prefix != nil && !strings.HasPrefix(obj.Name, *r.Filter.And.Prefix) {
 		return false
 	}
 	if len(r.Filter.And.Tags) != 0 {
 		if tags == nil {
 			return false
 		}
 		for _, tag := range r.Filter.And.Tags {
 			if tagVal := tags[tag.Key]; tagVal != tag.Value {
 				return false
 			}
 		}
 	}
 	if r.Filter.And.ObjectSizeLessThan != nil && obj.Size >= *r.Filter.And.ObjectSizeLessThan {
 		return false
 	}
 	if r.Filter.And.ObjectSizeGreaterThan != nil && obj.Size <= *r.Filter.And.ObjectSizeGreaterThan {
 		return false
 	}
 	return true
 }
--- a/api/data/tree.go
+++ b/api/data/tree.go
@ -4,9 +4,9 @@ import (
 	"strconv"
 	"time"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 )
 const (
--- a/api/errors/errors.go
+++ b/api/errors/errors.go
@ -90,7 +90,6 @@ const (
 	ErrMissingFields
 	ErrMissingCredTag
 	ErrCredMalformed
 	ErrInvalidLocationConstraint
 	ErrInvalidRegion
 	ErrInvalidServiceS3
 	ErrInvalidServiceSTS
@ -681,12 +680,6 @@ var errorCodes = errorCodeMap{
 		Description:    "Error parsing the X-Amz-Credential parameter; the region is wrong;",
 		HTTPStatusCode: http.StatusBadRequest,
 	},
 	ErrInvalidLocationConstraint: {
 		ErrCode:        ErrInvalidLocationConstraint,
 		Code:           "InvalidLocationConstraint",
 		Description:    "The specified location (Region) constraint is not valid.",
 		HTTPStatusCode: http.StatusBadRequest,
 	},
 	ErrInvalidRegion: {
 		ErrCode:        ErrInvalidRegion,
 		Code:           "InvalidRegion",
--- a/api/handler/acl.go
+++ b/api/handler/acl.go
@ -14,15 +14,15 @@ import (
 	"strconv"
 	"strings"
-	v2acl "git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/acl"
+	v2acl "github.com/TrueCloudLab/frostfs-api-go/v2/acl"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"go.uber.org/zap"
 )
@ -158,90 +158,6 @@ func (s ServiceRecord) ToEACLRecord() *eacl.Record {
 	return serviceRecord
 }
 var (
 	errInvalidStatement = stderrors.New("invalid statement")
 	errInvalidPrincipal = stderrors.New("invalid principal")
 )
 func (s *statement) UnmarshalJSON(data []byte) error {
 	var statementMap map[string]interface{}
 	if err := json.Unmarshal(data, &statementMap); err != nil {
 		return err
 	}
 	sidField, ok := statementMap["Sid"]
 	if ok {
 		if s.Sid, ok = sidField.(string); !ok {
 			return errInvalidStatement
 		}
 	}
 	effectField, ok := statementMap["Effect"]
 	if ok {
 		if s.Effect, ok = effectField.(string); !ok {
 			return errInvalidStatement
 		}
 	}
 	principalField, ok := statementMap["Principal"]
 	if ok {
 		principalMap, ok := principalField.(map[string]interface{})
 		if !ok {
 			return errInvalidPrincipal
 		}
 		awsField, ok := principalMap["AWS"]
 		if ok {
 			if s.Principal.AWS, ok = awsField.(string); !ok {
 				return fmt.Errorf("%w: 'AWS' field must be string", errInvalidPrincipal)
 			}
 		}
 		canonicalUserField, ok := principalMap["CanonicalUser"]
 		if ok {
 			if s.Principal.CanonicalUser, ok = canonicalUserField.(string); !ok {
 				return errInvalidPrincipal
 			}
 		}
 	}
 	actionField, ok := statementMap["Action"]
 	if ok {
 		switch actionField := actionField.(type) {
 		case []interface{}:
 			s.Action = make([]string, len(actionField))
 			for i, action := range actionField {
 				if s.Action[i], ok = action.(string); !ok {
 					return errInvalidStatement
 				}
 			}
 		case string:
 			s.Action = []string{actionField}
 		default:
 			return errInvalidStatement
 		}
 	}
 	resourceField, ok := statementMap["Resource"]
 	if ok {
 		switch resourceField := resourceField.(type) {
 		case []interface{}:
 			s.Resource = make([]string, len(resourceField))
 			for i, action := range resourceField {
 				if s.Resource[i], ok = action.(string); !ok {
 					return errInvalidStatement
 				}
 			}
 		case string:
 			s.Resource = []string{resourceField}
 		default:
 			return errInvalidStatement
 		}
 	}
 	return nil
 }
 func (h *handler) GetBucketACLHandler(w http.ResponseWriter, r *http.Request) {
 	reqInfo := api.GetReqInfo(r.Context())
--- a/api/handler/acl_test.go
+++ b/api/handler/acl_test.go
@ -13,14 +13,14 @@ import (
 	"net/http"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"github.com/stretchr/testify/require"
 )
@ -1352,85 +1352,6 @@ func TestBucketPolicy(t *testing.T) {
 	}
 }
 func TestBucketPolicyUnmarshal(t *testing.T) {
 	for _, tc := range []struct {
 		name   string
 		policy string
 	}{
 		{
 			name: "action/resource array",
 			policy: `
 {
 	"Version": "2012-10-17",
 	"Statement": [{
 		"Principal": {
 			"AWS": "arn:aws:iam::111122223333:role/JohnDoe"
 		},
 		"Effect": "Allow",
 		"Action": [
 			"s3:GetObject", 
 			"s3:GetObjectVersion"
 		],
 		"Resource": [
 			"arn:aws:s3:::DOC-EXAMPLE-BUCKET/*",
 			"arn:aws:s3:::DOC-EXAMPLE-BUCKET2/*"
 		]
 	}]
 }
 `,
 		},
 		{
 			name: "action/resource string",
 			policy: `
 {
 	"Version": "2012-10-17",
 	"Statement": [{
 		"Principal": {
 			"AWS": "arn:aws:iam::111122223333:role/JohnDoe"
 		},
 		"Effect": "Deny",
 		"Action": "s3:GetObject",
 		"Resource": "arn:aws:s3:::DOC-EXAMPLE-BUCKET/*"
 	}]
 }
 `,
 		},
 	} {
 		t.Run(tc.name, func(t *testing.T) {
 			bktPolicy := &bucketPolicy{}
 			err := json.Unmarshal([]byte(tc.policy), bktPolicy)
 			require.NoError(t, err)
 		})
 	}
 }
 func TestPutBucketPolicy(t *testing.T) {
 	bktPolicy := `
 {
 	"Version": "2012-10-17",
 	"Statement": [{
 		"Principal": {
 			"AWS": "*"
 		},
 		"Effect": "Deny",
 		"Action": "s3:GetObject",
 		"Resource": "arn:aws:s3:::bucket-for-policy/*"
 	}]
 }
 `
 	hc := prepareHandlerContext(t)
 	bktName := "bucket-for-policy"
 	box, _ := createAccessBox(t)
 	createBucket(t, hc, bktName, box)
 	w, r := prepareTestPayloadRequest(hc, bktName, "", bytes.NewReader([]byte(bktPolicy)))
 	ctx := context.WithValue(r.Context(), api.BoxData, box)
 	r = r.WithContext(ctx)
 	hc.Handler().PutBucketPolicyHandler(w, r)
 	assertStatus(hc.t, w, http.StatusOK)
 }
 func getBucketPolicy(hc *handlerContext, bktName string) *bucketPolicy {
 	w, r := prepareTestRequest(hc, bktName, "", nil)
 	hc.Handler().GetBucketPolicyHandler(w, r)
--- a/api/handler/api.go
+++ b/api/handler/api.go
@ -1,14 +1,12 @@
 package handler
 import (
 	"encoding/xml"
 	"errors"
 	"io"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap"
+	"github.com/TrueCloudLab/frostfs-sdk-go/netmap"
 	"go.uber.org/zap"
 )
@ -28,23 +26,15 @@ type (
 	// Config contains data which handler needs to keep.
 	Config struct {
 		Policy             PlacementPolicy
 		XMLDecoder                 XMLDecoderProvider
 		DefaultMaxAge      int
 		NotificatorEnabled bool
 		CopiesNumber       uint32
 		ResolveZoneList            []string
 		IsResolveListAllow         bool // True if ResolveZoneList contains allowed zones
 		CompleteMultipartKeepalive time.Duration
 	}
 	PlacementPolicy interface {
 		Default() netmap.PlacementPolicy
 		Get(string) (netmap.PlacementPolicy, bool)
 	}
 	XMLDecoderProvider interface {
 		NewCompleteMultipartDecoder(io.Reader) *xml.Decoder
 	}
 )
 const (
--- a/api/handler/attributes.go
+++ b/api/handler/attributes.go
@ -6,10 +6,10 @@ import (
 	"strconv"
 	"strings"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"go.uber.org/zap"
 )
--- a/api/handler/attributes_test.go
+++ b/api/handler/attributes_test.go
@ -4,7 +4,7 @@ import (
 	"strings"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/copy.go
+++ b/api/handler/copy.go
@ -6,12 +6,12 @@ import (
 	"regexp"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/auth"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/auth"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"go.uber.org/zap"
 )
--- a/api/handler/copy_test.go
+++ b/api/handler/copy_test.go
@ -6,7 +6,7 @@ import (
 	"net/url"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/cors.go
+++ b/api/handler/cors.go
@ -5,9 +5,9 @@ import (
 	"strconv"
 	"strings"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"go.uber.org/zap"
 )
--- a/api/handler/cors_test.go
+++ b/api/handler/cors_test.go
@ -1,41 +0,0 @@
 package handler
 import (
 	"context"
 	"net/http"
 	"strings"
 	"testing"
 	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
 )
 func TestCORSOriginWildcard(t *testing.T) {
 	body := `
 <CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
 	<CORSRule>
 		<AllowedMethod>GET</AllowedMethod>
 		<AllowedOrigin>*</AllowedOrigin>
 	</CORSRule>
 </CORSConfiguration>
 `
 	hc := prepareHandlerContext(t)
 	bktName := "bucket-for-cors"
 	box, _ := createAccessBox(t)
 	w, r := prepareTestRequest(hc, bktName, "", nil)
 	ctx := context.WithValue(r.Context(), api.BoxData, box)
 	r = r.WithContext(ctx)
 	r.Header.Add(api.AmzACL, "public-read")
 	hc.Handler().CreateBucketHandler(w, r)
 	assertStatus(t, w, http.StatusOK)
 	w, r = prepareTestPayloadRequest(hc, bktName, "", strings.NewReader(body))
 	ctx = context.WithValue(r.Context(), api.BoxData, box)
 	r = r.WithContext(ctx)
 	hc.Handler().PutBucketCorsHandler(w, r)
 	assertStatus(t, w, http.StatusOK)
 	w, r = prepareTestPayloadRequest(hc, bktName, "", nil)
 	hc.Handler().GetBucketCorsHandler(w, r)
 	assertStatus(t, w, http.StatusOK)
 }
--- a/api/handler/delete.go
+++ b/api/handler/delete.go
@ -6,20 +6,17 @@ import (
 	"strconv"
 	"strings"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	apistatus "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/client/status"
+	apistatus "github.com/TrueCloudLab/frostfs-sdk-go/client/status"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"go.uber.org/zap"
 	"go.uber.org/zap/zapcore"
 )
 // limitation of AWS https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObjects.html
 const maxObjectsToDelete = 1000
 // DeleteObjectsRequest -- xml carrying the object key names which should be deleted.
 type DeleteObjectsRequest struct {
 	// Element to enable quiet mode for the request
@ -179,11 +176,6 @@ func (h *handler) DeleteMultipleObjectsHandler(w http.ResponseWriter, r *http.Re
 		return
 	}
 	if len(requested.Objects) == 0 || len(requested.Objects) > maxObjectsToDelete {
 		h.logAndSendError(w, "number of objects to delete must be greater than 0 and less or equal to 1000", reqInfo, errors.GetAPIError(errors.ErrMalformedXML))
 		return
 	}
 	removed := make(map[string]*layer.VersionedObject)
 	toRemove := make([]*layer.VersionedObject, 0, len(requested.Objects))
 	for _, obj := range requested.Objects {
--- a/api/handler/delete_test.go
+++ b/api/handler/delete_test.go
@ -6,8 +6,8 @@ import (
 	"net/url"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/encryption_test.go
+++ b/api/handler/encryption_test.go
@ -12,8 +12,8 @@ import (
 	"strings"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/get.go
+++ b/api/handler/get.go
@ -8,10 +8,10 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"go.uber.org/zap"
 )
@ -195,6 +195,11 @@ func (h *handler) GetObjectHandler(w http.ResponseWriter, r *http.Request) {
 		return
 	}
 	if err = h.setExpirationHeader(r.Context(), bktInfo, info, w.Header()); err != nil {
 		h.logAndSendError(w, "could not get expiration info", reqInfo, err)
 		return
 	}
 	bktSettings, err := h.obj.GetBucketSettings(r.Context(), bktInfo)
 	if err != nil {
 		h.logAndSendError(w, "could not get bucket settings", reqInfo, err)
--- a/api/handler/get_test.go
+++ b/api/handler/get_test.go
@ -8,9 +8,9 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/handlers_test.go
+++ b/api/handler/handlers_test.go
@ -13,15 +13,15 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/resolver"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/resolver"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap"
+	"github.com/TrueCloudLab/frostfs-sdk-go/netmap"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"github.com/stretchr/testify/require"
 	"go.uber.org/zap"
@ -63,12 +63,6 @@ func (p *placementPolicyMock) Get(string) (netmap.PlacementPolicy, bool) {
 	return netmap.PlacementPolicy{}, false
 }
 type xmlDecoderProviderMock struct{}
 func (p *xmlDecoderProviderMock) NewCompleteMultipartDecoder(r io.Reader) *xml.Decoder {
 	return xml.NewDecoder(r)
 }
 func prepareHandlerContext(t *testing.T) *handlerContext {
 	key, err := keys.NewPrivateKey()
 	require.NoError(t, err)
@ -100,7 +94,6 @@ func prepareHandlerContext(t *testing.T) *handlerContext {
 		obj: layer.NewLayer(l, tp, layerCfg),
 		cfg: &Config{
 			Policy: &placementPolicyMock{defaultPolicy: pp},
 			XMLDecoder: &xmlDecoderProviderMock{},
 		},
 	}
--- a/api/handler/head.go
+++ b/api/handler/head.go
@ -2,12 +2,16 @@ package handler
 import (
 	"bytes"
 	"context"
 	"fmt"
 	"net/http"
 	"net/url"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"go.uber.org/zap"
 )
@ -103,6 +107,11 @@ func (h *handler) HeadObjectHandler(w http.ResponseWriter, r *http.Request) {
 		return
 	}
 	if err = h.setExpirationHeader(r.Context(), bktInfo, info, w.Header()); err != nil {
 		h.logAndSendError(w, "could not get expiration info", reqInfo, err)
 		return
 	}
 	bktSettings, err := h.obj.GetBucketSettings(r.Context(), bktInfo)
 	if err != nil {
 		h.logAndSendError(w, "could not get bucket settings", reqInfo, err)
@ -124,12 +133,6 @@ func (h *handler) HeadBucketHandler(w http.ResponseWriter, r *http.Request) {
 	w.Header().Set(api.ContainerID, bktInfo.CID.EncodeToString())
 	w.Header().Set(api.AmzBucketRegion, bktInfo.LocationConstraint)
 	if isAvailableToResolve(bktInfo.Zone, h.cfg.ResolveZoneList, h.cfg.IsResolveListAllow) {
 		w.Header().Set(api.ContainerName, bktInfo.Name)
 		w.Header().Set(api.ContainerZone, bktInfo.Zone)
 	}
 	api.WriteResponse(w, http.StatusOK, nil, api.MimeNone)
 }
@ -164,24 +167,23 @@ func writeLockHeaders(h http.Header, legalHold *data.LegalHold, retention *data.
 	}
 }
-func isAvailableToResolve(zone string, list []string, isAllowList bool) bool {
+func (h *handler) setExpirationHeader(ctx context.Context, bktInfo *data.BucketInfo, objInfo *data.ObjectInfo, header http.Header) error {
-	// empty zone means container doesn't have proper system name,
+	var expirationObjInfo data.ObjectInfo
-	// so we don't have to resolve it
+
-	if len(zone) == 0 {
+	// todo get expiration object info
-		return false
+
 	ruleID := expirationObjInfo.Headers[layer.AttributeExpireRuleID]
 	expDate, err := time.Parse(time.RFC3339, expirationObjInfo.Headers[layer.AttributeExpireDate])
 	if err != nil {
 		return fmt.Errorf("couldn't parse ivalid expiration time: %w", err)
 	}
-	var zoneInList bool
+	writeExpirationHeader(header, ruleID, expDate)
-	for _, t := range list {
+	return nil
 		if t == zone {
 			zoneInList = true
 			break
 }
-	}
+
-	// InList | IsAllowList | Result
+func writeExpirationHeader(h http.Header, ruleID string, expDate time.Time) {
-	//    0         0          1
+	header := "expiry-date=\"%s\", rule-id=\"%s\""
-	//    0         1          0
+	h.Set(api.AmzExpiration, fmt.Sprintf(header, expDate.UTC().Format(http.TimeFormat), url.QueryEscape(ruleID)))
 	//    1         0          0
 	//    1         1          1
 	return zoneInList == isAllowList
 }
--- a/api/handler/head_test.go
+++ b/api/handler/head_test.go
@ -6,10 +6,10 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"github.com/stretchr/testify/require"
 )
@ -86,26 +86,6 @@ func TestInvalidAccessThroughCache(t *testing.T) {
 	assertStatus(t, w, http.StatusForbidden)
 }
 func TestIsAvailableToResolve(t *testing.T) {
 	list := []string{"container", "s3"}
 	for i, testCase := range [...]struct {
 		isAllowList bool
 		list        []string
 		zone        string
 		expected    bool
 	}{
 		{isAllowList: true, list: list, zone: "container", expected: true},
 		{isAllowList: true, list: list, zone: "sftp", expected: false},
 		{isAllowList: false, list: list, zone: "s3", expected: false},
 		{isAllowList: false, list: list, zone: "system", expected: true},
 		{isAllowList: true, list: list, zone: "", expected: false},
 	} {
 		result := isAvailableToResolve(testCase.zone, testCase.list, testCase.isAllowList)
 		require.Equal(t, testCase.expected, result, "case %d", i+1)
 	}
 }
 func newTestAccessBox(t *testing.T, key *keys.PrivateKey) *accessbox.Box {
 	var err error
 	if key == nil {
--- a/api/handler/info.go
+++ b/api/handler/info.go
@ -3,7 +3,7 @@ package handler
 import (
 	"net/http"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
 )
 func (h *handler) GetBucketLocationHandler(w http.ResponseWriter, r *http.Request) {
--- a/api/handler/lifecycle.go
+++ b/api/handler/lifecycle.go
@ -0,0 +1,168 @@
 package handler
 import (
 	"context"
 	"encoding/xml"
 	"fmt"
 	"net/http"
 	"github.com/TrueCloudLab/frostfs-s3-gw/api"
 	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	apiErrors "github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 )
 func (h *handler) PutBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
 	reqInfo := api.GetReqInfo(r.Context())
 	bktInfo, err := h.obj.GetBucketInfo(r.Context(), reqInfo.BucketName)
 	if err != nil {
 		h.logAndSendError(w, "could not get bucket info", reqInfo, err)
 		return
 	}
 	if err = checkOwner(bktInfo, r.Header.Get(api.AmzExpectedBucketOwner)); err != nil {
 		h.logAndSendError(w, "expected owner doesn't match", reqInfo, err)
 		return
 	}
 	lifecycleConf := &data.LifecycleConfiguration{}
 	if err = xml.NewDecoder(r.Body).Decode(lifecycleConf); err != nil {
 		h.logAndSendError(w, "couldn't parse lifecycle configuration", reqInfo, err)
 		return
 	}
 	if err = checkLifecycleConfiguration(lifecycleConf); err != nil {
 		h.logAndSendError(w, "invalid lifecycle configuration", reqInfo, err)
 		return
 	}
 	if err = h.updateLifecycleConfiguration(r.Context(), bktInfo, lifecycleConf); err != nil {
 		h.logAndSendError(w, "couldn't put bucket settings", reqInfo, err)
 		return
 	}
 }
 func (h *handler) GetBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
 	reqInfo := api.GetReqInfo(r.Context())
 	bktInfo, err := h.obj.GetBucketInfo(r.Context(), reqInfo.BucketName)
 	if err != nil {
 		h.logAndSendError(w, "could not get bucket info", reqInfo, err)
 		return
 	}
 	if err = checkOwner(bktInfo, r.Header.Get(api.AmzExpectedBucketOwner)); err != nil {
 		h.logAndSendError(w, "expected owner doesn't match", reqInfo, err)
 		return
 	}
 	settings, err := h.obj.GetBucketSettings(r.Context(), bktInfo)
 	if err != nil {
 		h.logAndSendError(w, "couldn't get bucket settings", reqInfo, err)
 		return
 	}
 	if settings.LifecycleConfig == nil || settings.LifecycleConfig.CurrentConfiguration == nil {
 		h.logAndSendError(w, "lifecycle configuration doesn't exist", reqInfo,
 			apiErrors.GetAPIError(apiErrors.ErrNoSuchLifecycleConfiguration))
 		return
 	}
 	if err = api.EncodeToResponse(w, settings.LifecycleConfig.CurrentConfiguration); err != nil {
 		h.logAndSendError(w, "something went wrong", reqInfo, err)
 	}
 }
 func (h *handler) DeleteBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
 	reqInfo := api.GetReqInfo(r.Context())
 	bktInfo, err := h.obj.GetBucketInfo(r.Context(), reqInfo.BucketName)
 	if err != nil {
 		h.logAndSendError(w, "could not get bucket info", reqInfo, err)
 		return
 	}
 	if err = checkOwner(bktInfo, r.Header.Get(api.AmzExpectedBucketOwner)); err != nil {
 		h.logAndSendError(w, "expected owner doesn't match", reqInfo, err)
 		return
 	}
 	if err = h.updateLifecycleConfiguration(r.Context(), bktInfo, nil); err != nil {
 		h.logAndSendError(w, "couldn't put bucket settings", reqInfo, err)
 		return
 	}
 	w.WriteHeader(http.StatusNoContent)
 }
 func (h *handler) updateLifecycleConfiguration(ctx context.Context, bktInfo *data.BucketInfo, lifecycleConf *data.LifecycleConfiguration) error {
 	// todo consider run as separate goroutine
 	if err := h.obj.ScheduleLifecycle(ctx, bktInfo, lifecycleConf); err != nil {
 		return fmt.Errorf("couldn't apply lifecycle: %w", err)
 	}
 	return nil
 }
 func checkLifecycleConfiguration(conf *data.LifecycleConfiguration) error {
 	err := apiErrors.GetAPIError(apiErrors.ErrMalformedXML)
 	if len(conf.Rules) == 0 {
 		return err
 	}
 	if len(conf.Rules) > 1000 {
 		return fmt.Errorf("you cannot have more than 1000 rules")
 	}
 	for _, rule := range conf.Rules {
 		if rule.Status != enabledValue && rule.Status != disabledValue {
 			return err
 		}
 		if rule.Prefix != nil && rule.Filter != nil {
 			return err
 		}
 		if rule.Filter != nil {
 			if rule.Filter.ObjectSizeGreaterThan != nil && *rule.Filter.ObjectSizeGreaterThan < 0 ||
 				rule.Filter.ObjectSizeLessThan != nil && *rule.Filter.ObjectSizeLessThan < 0 {
 				return err
 			}
 			if !filterContainsOneOption(rule.Filter) {
 				return err
 			}
 		}
 		if !ruleHasAction(rule) {
 			return err
 		}
 		// currently only expiration action is supported
 		if rule.Expiration == nil {
 			return err
 		}
 		if rule.Expiration.Days != nil && rule.Expiration.Date != nil ||
 			rule.Expiration.Days == nil && rule.Expiration.Date == nil {
 			return err
 		}
 	}
 	return nil
 }
 func filterContainsOneOption(filter *data.LifecycleRuleFilter) bool {
 	exactlyOneOption := 0
 	if filter.Prefix != nil {
 		exactlyOneOption++
 	}
 	if filter.And != nil {
 		exactlyOneOption++
 	}
 	if filter.Tag != nil {
 		exactlyOneOption++
 	}
 	return exactlyOneOption == 1
 }
 func ruleHasAction(rule data.Rule) bool {
 	return rule.AbortIncompleteMultipartUpload != nil || rule.Expiration != nil ||
 		rule.NoncurrentVersionExpiration != nil || len(rule.Transitions) != 0 ||
 		len(rule.NoncurrentVersionTransitions) != 0
 }
--- a/api/handler/lifecycle_test.go
+++ b/api/handler/lifecycle_test.go
@ -0,0 +1,152 @@
 package handler
 import (
 	"encoding/xml"
 	"net/http"
 	"net/http/httptest"
 	"strconv"
 	"testing"
 	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	apiErrors "github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 	"github.com/stretchr/testify/require"
 )
 func TestCheckLifecycleConfiguration(t *testing.T) {
 	numRules := 1001
 	rules := make([]data.Rule, numRules)
 	for i := 0; i < numRules; i++ {
 		rules[i] = data.Rule{ID: strconv.Itoa(i), Status: disabledValue}
 	}
 	prefix := "prefix"
 	invalidSize := int64(-1)
 	days := int64(1)
 	for _, tc := range []struct {
 		name          string
 		configuration *data.LifecycleConfiguration
 		noError       bool
 	}{
 		{
 			name: "basic",
 			configuration: &data.LifecycleConfiguration{Rules: []data.Rule{{
 				ID:         "Some ID",
 				Status:     "Disabled",
 				Expiration: &data.Expiration{Days: &days},
 			}}},
 			noError: true,
 		},
 		{
 			name: "invalid status",
 			configuration: &data.LifecycleConfiguration{Rules: []data.Rule{{
 				ID:     "Some ID",
 				Status: "",
 			}}},
 		},
 		{
 			name:          "zero rules",
 			configuration: &data.LifecycleConfiguration{},
 		},
 		{
 			name:          "more than max rules",
 			configuration: &data.LifecycleConfiguration{Rules: rules},
 		},
 		{
 			name: "invalid empty filter",
 			configuration: &data.LifecycleConfiguration{Rules: []data.Rule{{
 				Status: enabledValue,
 				Filter: &data.LifecycleRuleFilter{},
 			}}},
 		},
 		{
 			name: "invalid filter not exactly one option",
 			configuration: &data.LifecycleConfiguration{Rules: []data.Rule{{
 				Status: enabledValue,
 				Filter: &data.LifecycleRuleFilter{
 					Prefix: &prefix,
 					Tag:    &data.Tag{},
 				},
 			}}},
 		},
 		{
 			name: "invalid filter greater obj size",
 			configuration: &data.LifecycleConfiguration{Rules: []data.Rule{{
 				Status: enabledValue,
 				Filter: &data.LifecycleRuleFilter{
 					ObjectSizeGreaterThan: &invalidSize,
 				},
 			}}},
 		},
 		{
 			name: "invalid filter less obj size",
 			configuration: &data.LifecycleConfiguration{Rules: []data.Rule{{
 				Status: enabledValue,
 				Filter: &data.LifecycleRuleFilter{
 					ObjectSizeLessThan: &invalidSize,
 				},
 			}}},
 		},
 	} {
 		t.Run(tc.name, func(t *testing.T) {
 			err := checkLifecycleConfiguration(tc.configuration)
 			if tc.noError {
 				require.NoError(t, err)
 			} else {
 				require.Error(t, err)
 			}
 		})
 	}
 }
 func TestBucketLifecycleConfiguration(t *testing.T) {
 	hc := prepareHandlerContext(t)
 	bktName := "bucket-for-lifecycle"
 	createTestBucket(hc, bktName)
 	w, r := prepareTestRequest(hc, bktName, "", nil)
 	hc.Handler().GetBucketLifecycleHandler(w, r)
 	assertS3Error(t, w, apiErrors.GetAPIError(apiErrors.ErrNoSuchLifecycleConfiguration))
 	days := int64(1)
 	lifecycleConf := &data.LifecycleConfiguration{
 		XMLName: xmlName("LifecycleConfiguration"),
 		Rules: []data.Rule{
 			{
 				Expiration: &data.Expiration{Days: &days},
 				ID:         "Test",
 				Status:     "Disabled",
 			},
 		}}
 	w, r = prepareTestRequest(hc, bktName, "", lifecycleConf)
 	hc.Handler().PutBucketLifecycleHandler(w, r)
 	require.Equal(t, http.StatusOK, w.Code)
 	w, r = prepareTestRequest(hc, bktName, "", nil)
 	hc.Handler().GetBucketLifecycleHandler(w, r)
 	assertXMLEqual(t, w, lifecycleConf, &data.LifecycleConfiguration{})
 	w, r = prepareTestRequest(hc, bktName, "", lifecycleConf)
 	hc.Handler().DeleteBucketLifecycleHandler(w, r)
 	require.Equal(t, http.StatusNoContent, w.Code)
 	// make sure deleting is idempotent operation
 	w, r = prepareTestRequest(hc, bktName, "", lifecycleConf)
 	hc.Handler().DeleteBucketLifecycleHandler(w, r)
 	require.Equal(t, http.StatusNoContent, w.Code)
 }
 func assertXMLEqual(t *testing.T, w *httptest.ResponseRecorder, expected, actual interface{}) {
 	err := xml.NewDecoder(w.Result().Body).Decode(actual)
 	require.NoError(t, err)
 	require.Equal(t, expected, actual)
 	require.Equal(t, http.StatusOK, w.Code)
 }
 func xmlName(local string) xml.Name {
 	return xml.Name{
 		Space: "http://s3.amazonaws.com/doc/2006-03-01/",
 		Local: local,
 	}
 }
--- a/api/handler/list.go
+++ b/api/handler/list.go
@ -4,8 +4,8 @@ import (
 	"net/http"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 )
 const maxObjectList = 1000 // Limit number of objects in a listObjectsResponse/listObjectsVersionsResponse.
--- a/api/handler/locking.go
+++ b/api/handler/locking.go
@ -8,10 +8,10 @@ import (
 	"strconv"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	apiErrors "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	apiErrors "github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 )
 const (
@ -19,6 +19,7 @@ const (
 	yearDuration = 365 * dayDuration
 	enabledValue   = "Enabled"
 	disabledValue  = "Disabled"
 	governanceMode = "GOVERNANCE"
 	complianceMode = "COMPLIANCE"
 	legalHoldOn    = "ON"
--- a/api/handler/locking_test.go
+++ b/api/handler/locking_test.go
@ -10,9 +10,9 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	apiErrors "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	apiErrors "github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/multipart_upload.go
+++ b/api/handler/multipart_upload.go
@ -2,17 +2,16 @@ package handler
 import (
 	"encoding/xml"
 	"fmt"
 	"io"
 	"net/http"
 	"net/url"
 	"strconv"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"github.com/google/uuid"
 	"go.uber.org/zap"
 )
@ -373,6 +372,8 @@ func (h *handler) CompleteMultipartUploadHandler(w http.ResponseWriter, r *http.
 	}
 	var (
 		sessionTokenSetEACL *session.Container
 		uploadID   = r.URL.Query().Get(uploadIDHeaderName)
 		uploadInfo = &layer.UploadInfoParams{
 			UploadID: uploadID,
@ -383,7 +384,7 @@ func (h *handler) CompleteMultipartUploadHandler(w http.ResponseWriter, r *http.
 	)
 	reqBody := new(CompleteMultipartUpload)
-	if err = h.cfg.XMLDecoder.NewCompleteMultipartDecoder(r.Body).Decode(reqBody); err != nil {
+	if err = xml.NewDecoder(r.Body).Decode(reqBody); err != nil {
 		h.logAndSendError(w, "could not read complete multipart upload xml", reqInfo,
 			errors.GetAPIError(errors.ErrMalformedXML), additional...)
 		return
@ -398,51 +399,10 @@ func (h *handler) CompleteMultipartUploadHandler(w http.ResponseWriter, r *http.
 		Parts: reqBody.Parts,
 	}
 	// Next operations might take some time, so we want to keep client's
 	// connection alive. To do so, gateway sends periodic white spaces
 	// back to the client the same way as Amazon S3 service does.
 	stopPeriodicResponseWriter := periodicXMLWriter(w, h.cfg.CompleteMultipartKeepalive)
 	// Start complete multipart upload which may take some time to fetch object
 	// and re-upload it part by part.
 	objInfo, err := h.completeMultipartUpload(r, c, bktInfo, reqInfo)
 	// Stop periodic writer as complete multipart upload is finished
 	// successfully or not.
 	headerIsWritten := stopPeriodicResponseWriter()
 	responseWriter := api.EncodeToResponse
 	errLogger := h.logAndSendError
 	// Do not send XML and HTTP headers if periodic writer was invoked at this point.
 	if headerIsWritten {
 		responseWriter = api.EncodeToResponseNoHeader
 		errLogger = h.logAndSendErrorNoHeader
 	}
 	if err != nil {
 		errLogger(w, "complete multipart error", reqInfo, err, additional...)
 		return
 	}
 	response := CompleteMultipartUploadResponse{
 		Bucket: objInfo.Bucket,
 		ETag:   objInfo.HashSum,
 		Key:    objInfo.Name,
 	}
 	// Here we previously set api.AmzVersionID header for versioned bucket.
 	// It is not possible after #60, because of periodic white
 	// space XML writer to keep connection with the client.
 	if err = responseWriter(w, response); err != nil {
 		errLogger(w, "something went wrong", reqInfo, err)
 	}
 }
 func (h *handler) completeMultipartUpload(r *http.Request, c *layer.CompleteMultipartParams, bktInfo *data.BucketInfo, reqInfo *api.ReqInfo) (*data.ObjectInfo, error) {
 	uploadData, extendedObjInfo, err := h.obj.CompleteMultipartUpload(r.Context(), c)
 	if err != nil {
-		return nil, fmt.Errorf("could not complete multipart upload: %w", err)
+		h.logAndSendError(w, "could not complete multipart upload", reqInfo, err, additional...)
 		return
 	}
 	objInfo := extendedObjInfo.ObjectInfo
@ -457,22 +417,21 @@ func (h *handler) completeMultipartUpload(r *http.Request, c *layer.CompleteMult
 			NodeVersion: extendedObjInfo.NodeVersion,
 		}
 		if _, err = h.obj.PutObjectTagging(r.Context(), tagPrm); err != nil {
-			return nil, fmt.Errorf("could not put tagging file of completed multipart upload: %w", err)
+			h.logAndSendError(w, "could not put tagging file of completed multipart upload", reqInfo, err, additional...)
 			return
 		}
 	}
 	if len(uploadData.ACLHeaders) != 0 {
 		sessionTokenSetEACL, err := getSessionTokenSetEACL(r.Context())
 		if err != nil {
 			return nil, fmt.Errorf("couldn't get eacl token: %w", err)
 		}
 		key, err := h.bearerTokenIssuerKey(r.Context())
 		if err != nil {
-			return nil, fmt.Errorf("couldn't get gate key: %w", err)
+			h.logAndSendError(w, "couldn't get gate key", reqInfo, err)
 			return
 		}
 		acl, err := parseACLHeaders(r.Header, key)
 		if err != nil {
-			return nil, fmt.Errorf("could not parse acl: %w", err)
+			h.logAndSendError(w, "could not parse acl", reqInfo, err)
 			return
 		}
 		resInfo := &resourceInfo{
@ -481,10 +440,12 @@ func (h *handler) completeMultipartUpload(r *http.Request, c *layer.CompleteMult
 		}
 		astObject, err := aclToAst(acl, resInfo)
 		if err != nil {
-			return nil, fmt.Errorf("could not translate acl of completed multipart upload to ast: %w", err)
+			h.logAndSendError(w, "could not translate acl of completed multipart upload to ast", reqInfo, err, additional...)
 			return
 		}
 		if _, err = h.updateBucketACL(r, astObject, bktInfo, sessionTokenSetEACL); err != nil {
-			return nil, fmt.Errorf("could not update bucket acl while completing multipart upload: %w", err)
+			h.logAndSendError(w, "could not update bucket acl while completing multipart upload", reqInfo, err, additional...)
 			return
 		}
 	}
@ -498,7 +459,24 @@ func (h *handler) completeMultipartUpload(r *http.Request, c *layer.CompleteMult
 		h.log.Error("couldn't send notification: %w", zap.Error(err))
 	}
-	return objInfo, nil
+	bktSettings, err := h.obj.GetBucketSettings(r.Context(), bktInfo)
 	if err != nil {
 		h.logAndSendError(w, "could not get bucket settings", reqInfo, err)
 	}
 	response := CompleteMultipartUploadResponse{
 		Bucket: objInfo.Bucket,
 		ETag:   objInfo.HashSum,
 		Key:    objInfo.Name,
 	}
 	if bktSettings.VersioningEnabled() {
 		w.Header().Set(api.AmzVersionID, objInfo.VersionID())
 	}
 	if err = api.EncodeToResponse(w, response); err != nil {
 		h.logAndSendError(w, "something went wrong", reqInfo, err)
 	}
 }
 func (h *handler) ListMultipartUploadsHandler(w http.ResponseWriter, r *http.Request) {
@ -703,62 +681,3 @@ func encodeListPartsToResponse(info *layer.ListPartsInfo, params *layer.ListPart
 		Parts:            info.Parts,
 	}
 }
 // periodicXMLWriter creates go routine to write xml header and whitespaces
 // over time to avoid connection drop from the client. To work properly,
 // pass `http.ResponseWriter` with implemented `http.Flusher` interface.
 // Returns stop function which returns boolean if writer has been used
 // during goroutine execution. To disable writer, pass 0 duration value.
 func periodicXMLWriter(w io.Writer, dur time.Duration) (stop func() bool) {
 	if dur == 0 { // 0 duration disables periodic writer
 		return func() bool { return false }
 	}
 	whitespaceChar := []byte(" ")
 	closer := make(chan struct{})
 	done := make(chan struct{})
 	headerWritten := false
 	go func() {
 		defer close(done)
 		tick := time.NewTicker(dur)
 		defer tick.Stop()
 		for {
 			select {
 			case <-tick.C:
 				if !headerWritten {
 					_, err := w.Write([]byte(xml.Header))
 					headerWritten = err == nil
 				}
 				_, err := w.Write(whitespaceChar)
 				if err != nil {
 					return // is there anything we can do better than ignore error?
 				}
 				if buffered, ok := w.(http.Flusher); ok {
 					buffered.Flush()
 				}
 			case <-closer:
 				return
 			}
 		}
 	}()
 	stop = func() bool {
 		close(closer)
 		<-done // wait for goroutine to stop
 		return headerWritten
 	}
 	return stop
 }
 // periodicWriterErrorSender returns handler function to send error. If header is
 // alreay written by periodic XML writer, do not send HTTP and XML headers.
 func (h *handler) periodicWriterErrorSender(headerWritten bool) func(http.ResponseWriter, string, *api.ReqInfo, error, ...zap.Field) {
 	if headerWritten {
 		return h.logAndSendErrorNoHeader
 	}
 	return h.logAndSendError
 }
--- a/api/handler/multipart_upload_test.go
+++ b/api/handler/multipart_upload_test.go
@ -1,48 +0,0 @@
 package handler
 import (
 	"bytes"
 	"encoding/xml"
 	"testing"
 	"time"
 	"github.com/stretchr/testify/require"
 )
 func TestPeriodicWriter(t *testing.T) {
 	const dur = 100 * time.Millisecond
 	const whitespaces = 8
 	expected := []byte(xml.Header)
 	for i := 0; i < whitespaces; i++ {
 		expected = append(expected, []byte(" ")...)
 	}
 	t.Run("writes data", func(t *testing.T) {
 		buf := bytes.NewBuffer(nil)
 		stop := periodicXMLWriter(buf, dur)
 		// N number of whitespaces + half durations to guarantee at least N writes in buffer
 		time.Sleep(whitespaces*dur + dur/2)
 		require.True(t, stop())
 		require.Equal(t, expected, buf.Bytes())
 		t.Run("no additional data after stop", func(t *testing.T) {
 			time.Sleep(2 * dur)
 			require.Equal(t, expected, buf.Bytes())
 		})
 	})
 	t.Run("does not write data", func(t *testing.T) {
 		buf := bytes.NewBuffer(nil)
 		stop := periodicXMLWriter(buf, dur)
 		time.Sleep(dur / 2)
 		require.False(t, stop())
 		require.Empty(t, buf.Bytes())
 		t.Run("disabled", func(t *testing.T) {
 			stop = periodicXMLWriter(buf, 0)
 			require.False(t, stop())
 			require.Empty(t, buf.Bytes())
 		})
 	})
 }
--- a/api/handler/not_support.go
+++ b/api/handler/not_support.go
@ -3,18 +3,14 @@ package handler
 import (
 	"net/http"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 )
 func (h *handler) DeleteBucketPolicyHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not supported", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotSupported))
 }
 func (h *handler) DeleteBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not supported", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotSupported))
 }
 func (h *handler) DeleteBucketEncryptionHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not supported", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotSupported))
 }
--- a/api/handler/notifications.go
+++ b/api/handler/notifications.go
@ -8,11 +8,11 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
 	"github.com/google/uuid"
 )
--- a/api/handler/notifications_test.go
+++ b/api/handler/notifications_test.go
@ -3,8 +3,8 @@ package handler
 import (
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/object_list.go
+++ b/api/handler/object_list.go
@ -6,11 +6,11 @@ import (
 	"strconv"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 )
 // ListObjectsV1Handler handles objects listing requests for API version 1.
--- a/api/handler/object_list_test.go
+++ b/api/handler/object_list_test.go
@ -6,7 +6,7 @@ import (
 	"strconv"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/put.go
+++ b/api/handler/put.go
@ -16,15 +16,15 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/auth"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/auth"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"go.uber.org/zap"
 )
@ -720,10 +720,7 @@ func (h *handler) CreateBucketHandler(w http.ResponseWriter, r *http.Request) {
 		return
 	}
-	if err = h.setPolicy(p, createParams.LocationConstraint, policies); err != nil {
+	h.setPolicy(p, createParams.LocationConstraint, policies)
 		h.logAndSendError(w, "couldn't set placement policy", reqInfo, err)
 		return
 	}
 	p.ObjectLockEnabled = isLockEnabled(r.Header)
@ -751,27 +748,25 @@ func (h *handler) CreateBucketHandler(w http.ResponseWriter, r *http.Request) {
 	api.WriteSuccessResponseHeadersOnly(w)
 }
-func (h handler) setPolicy(prm *layer.CreateBucketParams, locationConstraint string, userPolicies []*accessbox.ContainerPolicy) error {
+func (h handler) setPolicy(prm *layer.CreateBucketParams, locationConstraint string, userPolicies []*accessbox.ContainerPolicy) {
 	prm.Policy = h.cfg.Policy.Default()
 	prm.LocationConstraint = locationConstraint
 	if locationConstraint == "" {
-		return nil
+		return
 	}
 	if policy, ok := h.cfg.Policy.Get(locationConstraint); ok {
 		prm.Policy = policy
 		prm.LocationConstraint = locationConstraint
 	}
 	for _, placementPolicy := range userPolicies {
 		if placementPolicy.LocationConstraint == locationConstraint {
 			prm.Policy = placementPolicy.Policy
-			return nil
+			prm.LocationConstraint = locationConstraint
 			return
 		}
 	}
 	if policy, ok := h.cfg.Policy.Get(locationConstraint); ok {
 		prm.Policy = policy
 		return nil
 	}
 	return errors.GetAPIError(errors.ErrInvalidLocationConstraint)
 }
 func isLockEnabled(header http.Header) bool {
--- a/api/handler/put_test.go
+++ b/api/handler/put_test.go
@ -8,8 +8,8 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"github.com/stretchr/testify/require"
 )
--- a/api/handler/tagging.go
+++ b/api/handler/tagging.go
@ -8,10 +8,10 @@ import (
 	"strings"
 	"unicode"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"go.uber.org/zap"
 )
--- a/api/handler/unimplemented.go
+++ b/api/handler/unimplemented.go
@ -3,18 +3,14 @@ package handler
 import (
 	"net/http"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 )
 func (h *handler) SelectObjectContentHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not implemented", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotImplemented))
 }
 func (h *handler) GetBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not implemented", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotImplemented))
 }
 func (h *handler) GetBucketEncryptionHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not implemented", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotImplemented))
 }
@ -51,10 +47,6 @@ func (h *handler) ListObjectsV2MHandler(w http.ResponseWriter, r *http.Request)
 	h.logAndSendError(w, "not implemented", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotImplemented))
 }
 func (h *handler) PutBucketLifecycleHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not implemented", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotImplemented))
 }
 func (h *handler) PutBucketEncryptionHandler(w http.ResponseWriter, r *http.Request) {
 	h.logAndSendError(w, "not implemented", api.GetReqInfo(r.Context()), errors.GetAPIError(errors.ErrNotImplemented))
 }
--- a/api/handler/util.go
+++ b/api/handler/util.go
@ -7,11 +7,11 @@ import (
 	"strconv"
 	"strings"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"go.uber.org/zap"
 )
@ -29,19 +29,6 @@ func (h *handler) logAndSendError(w http.ResponseWriter, logText string, reqInfo
 	h.log.Error("call method", fields...)
 }
 func (h *handler) logAndSendErrorNoHeader(w http.ResponseWriter, logText string, reqInfo *api.ReqInfo, err error, additional ...zap.Field) {
 	api.WriteErrorResponseNoHeader(w, reqInfo, transformToS3Error(err))
 	fields := []zap.Field{
 		zap.String("request_id", reqInfo.RequestID),
 		zap.String("method", reqInfo.API),
 		zap.String("bucket", reqInfo.BucketName),
 		zap.String("object", reqInfo.ObjectName),
 		zap.String("description", logText),
 		zap.Error(err)}
 	fields = append(fields, additional...)
 	h.log.Error("call method", fields...)
 }
 func transformToS3Error(err error) error {
 	if _, ok := err.(errors.Error); ok {
 		return err
@ -55,10 +42,6 @@ func transformToS3Error(err error) error {
 	return errors.GetAPIError(errors.ErrInternalError)
 }
 func (h *handler) ResolveBucket(ctx context.Context, bucket string) (*data.BucketInfo, error) {
 	return h.obj.GetBucketInfo(ctx, bucket)
 }
 func (h *handler) getBucketAndCheckOwner(r *http.Request, bucket string, header ...string) (*data.BucketInfo, error) {
 	bktInfo, err := h.obj.GetBucketInfo(r.Context(), bucket)
 	if err != nil {
--- a/api/handler/versioning.go
+++ b/api/handler/versioning.go
@ -4,10 +4,10 @@ import (
 	"encoding/xml"
 	"net/http"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 )
 func (h *handler) PutBucketVersioningHandler(w http.ResponseWriter, r *http.Request) {
--- a/api/headers.go
+++ b/api/headers.go
@ -57,14 +57,13 @@ const (
 	AmzObjectAttributes          = "X-Amz-Object-Attributes"
 	AmzMaxParts                  = "X-Amz-Max-Parts"
 	AmzPartNumberMarker          = "X-Amz-Part-Number-Marker"
 	AmzExpiration                = "X-Amz-Expiration"
 	AmzServerSideEncryptionCustomerAlgorithm = "x-amz-server-side-encryption-customer-algorithm"
 	AmzServerSideEncryptionCustomerKey       = "x-amz-server-side-encryption-customer-key"
 	AmzServerSideEncryptionCustomerKeyMD5    = "x-amz-server-side-encryption-customer-key-MD5"
 	ContainerID = "X-Container-Id"
 	ContainerName = "X-Container-Name"
 	ContainerZone = "X-Container-Zone"
 	AccessControlAllowOrigin      = "Access-Control-Allow-Origin"
 	AccessControlAllowMethods     = "Access-Control-Allow-Methods"
--- a/api/layer/cache.go
+++ b/api/layer/cache.go
@ -1,11 +1,11 @@
 package layer
 import (
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/cache"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/cache"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"go.uber.org/zap"
 )
--- a/api/layer/compound.go
+++ b/api/layer/compound.go
@ -4,8 +4,8 @@ import (
 	"context"
 	errorsStd "errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 )
 func (n *layer) GetObjectTaggingAndLock(ctx context.Context, objVersion *ObjectVersion, nodeVersion *data.NodeVersion) (map[string]string, *data.LockInfo, error) {
--- a/api/layer/container.go
+++ b/api/layer/container.go
@ -5,15 +5,14 @@ import (
 	"fmt"
 	"strconv"
-	v2container "git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/container"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-sdk-go/client"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/client"
+	"github.com/TrueCloudLab/frostfs-sdk-go/container"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
 	"go.uber.org/zap"
 )
@ -57,7 +56,6 @@ func (n *layer) containerInfo(ctx context.Context, idCnr cid.ID) (*data.BucketIn
 	info.Owner = cnr.Owner()
 	if domain := container.ReadDomain(cnr); domain.Name() != "" {
 		info.Name = domain.Name()
 		info.Zone = domain.Zone()
 	}
 	info.Created = container.CreatedAt(cnr)
 	info.LocationConstraint = cnr.Attribute(attributeLocationConstraint)
@ -116,7 +114,6 @@ func (n *layer) createContainer(ctx context.Context, p *CreateBucketParams) (*da
 	}
 	bktInfo := &data.BucketInfo{
 		Name:               p.Name,
 		Zone:               v2container.SysAttributeZoneDefault,
 		Owner:              ownerID,
 		Created:            TimeNow(ctx),
 		LocationConstraint: p.LocationConstraint,
--- a/api/layer/cors.go
+++ b/api/layer/cors.go
@ -8,8 +8,8 @@ import (
 	"fmt"
 	"io"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 	"go.uber.org/zap"
 )
@ -39,7 +39,7 @@ func (n *layer) PutBucketCORS(ctx context.Context, p *PutCORSParams) error {
 	prm := PrmObjectCreate{
 		Container:    p.BktInfo.CID,
 		Creator:      p.BktInfo.Owner,
-		Payload:      &buf,
+		Payload:      p.Reader,
 		Filepath:     p.BktInfo.CORSObjectName(),
 		CreationTime: TimeNow(ctx),
 		CopiesNumber: p.CopiesNumber,
--- a/api/layer/frostfs.go
+++ b/api/layer/frostfs.go
@ -7,16 +7,16 @@ import (
 	"io"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container"
+	"github.com/TrueCloudLab/frostfs-sdk-go/container"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/acl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/container/acl"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap"
+	"github.com/TrueCloudLab/frostfs-sdk-go/netmap"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 )
 // PrmContainerCreate groups parameters of FrostFS.CreateContainer operation.
--- a/api/layer/layer.go
+++ b/api/layer/layer.go
@ -11,18 +11,18 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap"
+	"github.com/TrueCloudLab/frostfs-sdk-go/netmap"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/nats-io/nats.go"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"go.uber.org/zap"
@ -191,6 +191,8 @@ type (
 		GetBucketSettings(ctx context.Context, bktInfo *data.BucketInfo) (*data.BucketSettings, error)
 		PutBucketSettings(ctx context.Context, p *PutSettingsParams) error
 		ScheduleLifecycle(ctx context.Context, bktInfo *data.BucketInfo, new *data.LifecycleConfiguration) error
 		PutBucketCORS(ctx context.Context, p *PutCORSParams) error
 		GetBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (*data.CORSConfiguration, error)
 		DeleteBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) error
@ -288,7 +290,9 @@ func (n *layer) Initialize(ctx context.Context, c EventListener) error {
 		return fmt.Errorf("already initialized")
 	}
-	// todo add notification handlers (e.g. for lifecycles)
+	if err := c.Subscribe(ctx, ExpireTopic, MsgHandlerFunc(n.handleExpireTick)); err != nil {
 		return fmt.Errorf("couldn't initialize layer: %w", err)
 	}
 	c.Listen(ctx)
--- a/api/layer/lifecycle.go
+++ b/api/layer/lifecycle.go
@ -0,0 +1,211 @@
 package layer
 import (
 	"context"
 	"crypto/sha256"
 	"encoding/hex"
 	"encoding/xml"
 	"fmt"
 	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	"github.com/nats-io/nats.go"
 	"go.uber.org/zap"
 )
 const (
 	AttributeExpirationEpoch   = "__NEOFS__EXPIRATION_EPOCH"
 	AttributeSysTickEpoch      = "__NEOFS__TICK_EPOCH"
 	AttributeSysTickTopic      = "__NEOFS__TICK_TOPIC"
 	AttributeParentObject      = ".s3-expire-parent-object"
 	AttributeParentBucket      = ".s3-expire-parent-bucket"
 	AttributeExpireDate        = ".s3-expire-date"
 	AttributeExpireRuleID      = ".s3-expire-rule-id"
 	AttributeLifecycleConfigID = ".s3-lifecycle-config"
 	ExpireTopic                = "expire"
 )
 func (n *layer) handleExpireTick(ctx context.Context, msg *nats.Msg) error {
 	var addr oid.Address
 	if err := addr.DecodeString(string(msg.Data)); err != nil {
 		return fmt.Errorf("invalid msg, address expected: %w", err)
 	}
 	n.log.Debug("handling expiration tick", zap.String("address", string(msg.Data)))
 	// and make sure having right access
 	//todo redo
 	bktInfo := &data.BucketInfo{CID: addr.Container()}
 	obj, err := n.objectHead(ctx, bktInfo, addr.Object())
 	if err != nil {
 		return fmt.Errorf("couldn't head expiration object: %w", err)
 	}
 	header := userHeaders(obj.Attributes())
 	objName := header[AttributeParentObject]
 	bktName := header[AttributeParentBucket]
 	if objName == "" || bktName == "" {
 		return fmt.Errorf("couldn't know bucket/object to expire")
 	}
 	p := &DeleteObjectParams{
 		BktInfo: bktInfo,
 		Objects: []*VersionedObject{{Name: objName}},
 	}
 	res := n.DeleteObjects(ctx, p)
 	if res[0].Error != nil {
 		return fmt.Errorf("couldn't delete expired object: %w", res[0].Error)
 	}
 	return n.objectDelete(ctx, bktInfo, addr.Object())
 }
 func (n *layer) ScheduleLifecycle(ctx context.Context, bktInfo *data.BucketInfo, newConf *data.LifecycleConfiguration) error {
 	if newConf == nil {
 		return nil
 	}
 	lifecycleID, err := computeLifecycleID(newConf)
 	if err != nil {
 		return fmt.Errorf("couldn't compute lifecycle id: %w", err)
 	}
 	// We want to be able to revert partly applied lifecycle if something goes wrong.
 	if err = n.updateLifecycle(ctx, bktInfo, &data.LifecycleConfig{
 		OldConfigurationID: lifecycleID,
 	}); err != nil {
 		return err
 	}
 	if err = n.applyLifecycle(ctx, bktInfo, lifecycleID, newConf); err != nil {
 		return err
 	}
 	return n.updateLifecycle(ctx, bktInfo, &data.LifecycleConfig{
 		OldConfigurationID:   lifecycleID,
 		CurrentConfiguration: newConf,
 	})
 }
 func (n *layer) updateLifecycle(ctx context.Context, bktInfo *data.BucketInfo, lifecycleConfig *data.LifecycleConfig) error {
 	settings, err := n.GetBucketSettings(ctx, bktInfo)
 	if err != nil {
 		return fmt.Errorf("couldn't get bucket settings: %w", err)
 	}
 	settings.LifecycleConfig = lifecycleConfig
 	sp := &PutSettingsParams{
 		BktInfo:  bktInfo,
 		Settings: settings,
 	}
 	if err = n.PutBucketSettings(ctx, sp); err != nil {
 		return fmt.Errorf("couldn't put bucket settings: %w", err)
 	}
 	return nil
 }
 func (n *layer) applyLifecycle(ctx context.Context, bktInfo *data.BucketInfo, lifecycleID string, conf *data.LifecycleConfiguration) error {
 	for _, rule := range conf.Rules {
 		if rule.Status == "Disabled" {
 			continue
 		}
 		listParam := allObjectParams{
 			Bucket: bktInfo,
 			Prefix: rule.RealPrefix(),
 		}
 		objects, _, err := n.getLatestObjectsVersions(ctx, listParam)
 		if err != nil {
 			return err
 		}
 		if err = n.applyLifecycleToObjects(ctx, bktInfo, lifecycleID, rule, objects); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 func (n *layer) applyLifecycleToObjects(ctx context.Context, bktInfo *data.BucketInfo, lifecycleID string, rule data.Rule, objects []*data.ObjectInfo) error {
 	var tags []map[string]string
 	var err error
 	if rule.NeedTags() {
 		tags = make([]map[string]string, len(objects))
 		p := &ObjectVersion{
 			BktInfo: bktInfo,
 		}
 		for i, obj := range objects {
 			p.ObjectName = obj.Name
 			p.VersionID = obj.VersionID()
 			if _, tags[i], err = n.GetObjectTagging(ctx, p); err != nil {
 				return fmt.Errorf("couldn't get object tags: %w", err)
 			}
 		}
 	}
 	for i, obj := range objects {
 		var objTags map[string]string
 		if len(tags) != 0 {
 			objTags = tags[i]
 		}
 		if !rule.MatchObject(obj, objTags) {
 			continue
 		}
 		expObj := &data.ExpirationObject{
 			Expiration:        rule.Expiration,
 			RuleID:            rule.ID,
 			LifecycleConfigID: lifecycleID,
 		}
 		if _, err = n.putExpirationObject(ctx, bktInfo, obj, expObj); err != nil {
 			return fmt.Errorf("couldn't put expiration object: %w", err)
 		}
 	}
 	return nil
 }
 func (n *layer) putLifecycleObjects(ctx context.Context, bktInfo *data.BucketInfo, obj *data.ObjectInfo, lifecycle *data.LifecycleConfig) error {
 	if lifecycle == nil || lifecycle.CurrentConfiguration == nil {
 		return nil
 	}
 	for _, rule := range lifecycle.CurrentConfiguration.Rules {
 		if rule.Status == "Disabled" {
 			continue
 		}
 		// at this time lifecycle.OldConfigurationID is the same as lifecycle.CurrentConfiguration id
 		if err := n.applyLifecycleToObjects(ctx, bktInfo, lifecycle.OldConfigurationID, rule, []*data.ObjectInfo{obj}); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 func computeLifecycleID(conf *data.LifecycleConfiguration) (string, error) {
 	raw, err := xml.Marshal(conf)
 	if err != nil {
 		return "", fmt.Errorf("couldn't marshall new lifecycle configuration: %w", err)
 	}
 	sha := sha256.New()
 	sha.Write(raw)
 	sum := sha.Sum(nil)
 	id := hex.EncodeToString(sum)
 	if id == "" {
 		return "", fmt.Errorf("computed id is empty")
 	}
 	return id, nil
 }
--- a/api/layer/lifecycle_test.go
+++ b/api/layer/lifecycle_test.go
@ -0,0 +1,159 @@
 package layer
 import (
 	"testing"
 	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"github.com/stretchr/testify/require"
 )
 func TestComputeLifecycleID(t *testing.T) {
 	conf := &data.LifecycleConfiguration{Rules: []data.Rule{
 		{
 			ID:     "id",
 			Status: "Enabled",
 		},
 	}}
 	id, err := computeLifecycleID(conf)
 	require.NoError(t, err)
 	require.Equal(t, "51ff619dc848622287764fc7c4aec06b7c1a5936c25b8eee48a0dbcb4eeac9f4", id)
 }
 func TestRuleMatchObject(t *testing.T) {
 	prefix, suffix := "prefix", "suffix"
 	objSizeMin, objSizeMax := int64(512), int64(1024)
 	for _, tc := range []struct {
 		name     string
 		rule     data.Rule
 		obj      *data.ObjectInfo
 		tags     map[string]string
 		expected bool
 	}{
 		{
 			name:     "basic match",
 			rule:     data.Rule{Prefix: &prefix},
 			obj:      &data.ObjectInfo{Name: prefix + suffix},
 			expected: true,
 		},
 		{
 			name:     "basic no match",
 			rule:     data.Rule{Prefix: &prefix},
 			obj:      &data.ObjectInfo{Name: suffix + prefix},
 			expected: false,
 		},
 		{
 			name: "filter and sizes",
 			rule: data.Rule{Filter: &data.LifecycleRuleFilter{
 				And: &data.LifecycleRuleAndOperator{
 					ObjectSizeGreaterThan: &objSizeMin,
 					ObjectSizeLessThan:    &objSizeMax,
 				},
 			}},
 			obj:      &data.ObjectInfo{Name: suffix, Size: 768},
 			expected: true,
 		},
 		{
 			name: "filter prefix",
 			rule: data.Rule{Filter: &data.LifecycleRuleFilter{
 				Prefix: &prefix,
 			}},
 			obj:      &data.ObjectInfo{Name: prefix + suffix},
 			expected: true,
 		},
 		{
 			name: "filter prefix no match",
 			rule: data.Rule{Filter: &data.LifecycleRuleFilter{
 				Prefix: &prefix,
 			}},
 			obj:      &data.ObjectInfo{Name: suffix},
 			expected: false,
 		},
 		{
 			name: "filter tags",
 			rule: data.Rule{Filter: &data.LifecycleRuleFilter{
 				Tag: &data.Tag{
 					Key:   "key",
 					Value: "val",
 				},
 			}},
 			tags:     map[string]string{"key": "val"},
 			obj:      &data.ObjectInfo{},
 			expected: true,
 		},
 		{
 			name: "filter and tags no match",
 			rule: data.Rule{Filter: &data.LifecycleRuleFilter{
 				And: &data.LifecycleRuleAndOperator{
 					Tags: []data.Tag{{
 						Key:   "key",
 						Value: "val",
 					}},
 				},
 			}},
 			tags:     map[string]string{"key": "val2"},
 			obj:      &data.ObjectInfo{},
 			expected: false,
 		},
 		{
 			name: "filter size no match",
 			rule: data.Rule{Filter: &data.LifecycleRuleFilter{
 				ObjectSizeGreaterThan: &objSizeMax,
 			}},
 			obj:      &data.ObjectInfo{Size: objSizeMin},
 			expected: false,
 		},
 	} {
 		t.Run(tc.name, func(t *testing.T) {
 			require.Equal(t, tc.expected, tc.rule.MatchObject(tc.obj, tc.tags))
 		})
 	}
 }
 func TestScheduleLifecycle(t *testing.T) {
 	tc := prepareContext(t)
 	obj1 := tc.putObject([]byte("content"))
 	date := "2022-03-14T09:59:03Z"
 	date2 := "2022-03-15T09:59:03Z"
 	prefix := "prefix"
 	tc.obj = prefix
 	obj2 := tc.putObject([]byte("content2"))
 	conf := &data.LifecycleConfiguration{
 		Rules: []data.Rule{{
 			Filter: &data.LifecycleRuleFilter{
 				Prefix: &prefix,
 			},
 			Expiration: &data.Expiration{
 				Date: &date,
 			}},
 		},
 	}
 	err := tc.layer.ScheduleLifecycle(tc.ctx, tc.bktInfo, conf)
 	require.NoError(t, err)
 	expObj1, _ := tc.getObject(obj1.ExpirationObject(), "", false)
 	require.Nil(t, expObj1)
 	expObj2, _ := tc.getObject(obj2.ExpirationObject(), "", false)
 	require.NotNil(t, expObj2)
 	assertExpirationObject(t, expObj2, date)
 	conf.Rules[0].Expiration.Date = &date2
 	err = tc.layer.ScheduleLifecycle(tc.ctx, tc.bktInfo, conf)
 	require.NoError(t, err)
 	expObj2, _ = tc.getObject(obj2.ExpirationObject(), "", false)
 	require.NotNil(t, expObj2)
 	assertExpirationObject(t, expObj2, date2)
 }
 func assertExpirationObject(t *testing.T, expObjInfo *data.ObjectInfo, date string) {
 	require.Equal(t, expObjInfo.Headers[AttributeExpireDate], date)
 	require.Contains(t, expObjInfo.Headers, AttributeSysTickEpoch)
 	require.Contains(t, expObjInfo.Headers, AttributeSysTickTopic)
 	require.Contains(t, expObjInfo.Headers, AttributeLifecycleConfigID)
 }
--- a/api/layer/locking_test.go
+++ b/api/layer/locking_test.go
@ -4,8 +4,7 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/object"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
 	"github.com/stretchr/testify/require"
 )
@ -44,10 +43,10 @@ func TestObjectLockAttributes(t *testing.T) {
 	expEpoch := false
 	for _, attr := range lockObj.Attributes() {
-		if attr.Key() == object.SysAttributeExpEpoch {
+		if attr.Key() == AttributeExpirationEpoch {
 			expEpoch = true
 		}
 	}
-	require.Truef(t, expEpoch, "system header __SYSTEM__EXPIRATION_EPOCH presence")
+	require.Truef(t, expEpoch, "system header __NEOFS__EXPIRATION_EPOCH presence")
 }
--- a/api/layer/multipart_upload.go
+++ b/api/layer/multipart_upload.go
@ -11,12 +11,12 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/minio/sio"
 	"go.uber.org/zap"
 )
--- a/api/layer/neofs_mock.go
+++ b/api/layer/neofs_mock.go
@ -10,18 +10,18 @@ import (
 	"io"
 	"time"
-	objectv2 "git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/object"
+	objectv2 "github.com/TrueCloudLab/frostfs-api-go/v2/object"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/checksum"
+	"github.com/TrueCloudLab/frostfs-sdk-go/checksum"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container"
+	"github.com/TrueCloudLab/frostfs-sdk-go/container"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 )
 type TestFrostFS struct {
@ -144,7 +144,7 @@ func (t *TestFrostFS) ReadObject(ctx context.Context, prm PrmObjectRead) (*Objec
 	if obj, ok := t.objects[sAddr]; ok {
 		owner := getOwner(ctx)
-		if !obj.OwnerID().Equals(owner) && !t.isPublicRead(prm.Container) {
+		if !obj.OwnerID().Equals(owner) {
 			return nil, ErrAccessDenied
 		}
@ -282,25 +282,6 @@ func (t *TestFrostFS) ContainerEACL(_ context.Context, cnrID cid.ID) (*eacl.Tabl
 	return table, nil
 }
 func (t *TestFrostFS) isPublicRead(cnrID cid.ID) bool {
 	table, ok := t.eaclTables[cnrID.EncodeToString()]
 	if !ok {
 		return false
 	}
 	for _, rec := range table.Records() {
 		if rec.Operation() == eacl.OperationGet && len(rec.Filters()) == 0 {
 			for _, trgt := range rec.Targets() {
 				if trgt.Role() == eacl.RoleOthers {
 					return rec.Action() == eacl.ActionAllow
 				}
 			}
 		}
 	}
 	return false
 }
 func getOwner(ctx context.Context) user.ID {
 	if bd, ok := ctx.Value(api.BoxData).(*accessbox.Box); ok && bd != nil && bd.Gate != nil && bd.Gate.BearerToken != nil {
 		return bearer.ResolveIssuer(*bd.Gate.BearerToken)
--- a/api/layer/notifications.go
+++ b/api/layer/notifications.go
@ -7,8 +7,8 @@ import (
 	errorsStd "errors"
 	"fmt"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 	"go.uber.org/zap"
 )
--- a/api/layer/object.go
+++ b/api/layer/object.go
@ -14,14 +14,14 @@ import (
 	"strings"
 	"sync"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/cache"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/cache"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	apiErrors "git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	apiErrors "github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/client"
+	"github.com/TrueCloudLab/frostfs-sdk-go/client"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	"github.com/minio/sio"
 	"github.com/panjf2000/ants/v2"
 	"go.uber.org/zap"
@ -298,6 +298,11 @@ func (n *layer) PutObject(ctx context.Context, p *PutObjectParams) (*data.Extend
 		NodeVersion: newVersion,
 	}
 	// todo filling api.AmzExpiration header
 	if err = n.putLifecycleObjects(ctx, p.BktInfo, objInfo, bktSettings.LifecycleConfig); err != nil {
 		return nil, fmt.Errorf("couldn't put expiration system objects: %w", err)
 	}
 	n.cache.PutObjectWithName(owner, extendedObjInfo)
 	return extendedObjInfo, nil
--- a/api/layer/system_object.go
+++ b/api/layer/system_object.go
@ -9,10 +9,9 @@ import (
 	"strconv"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/object"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
 )
 const (
@ -130,6 +129,54 @@ func (n *layer) putLockObject(ctx context.Context, bktInfo *data.BucketInfo, obj
 	return id, err
 }
 func (n *layer) putExpirationObject(ctx context.Context, bktInfo *data.BucketInfo, objInfo *data.ObjectInfo, expObj *data.ExpirationObject) (oid.ID, error) {
 	prm := PrmObjectCreate{
 		Container: bktInfo.CID,
 		Creator:   bktInfo.Owner,
 		Filepath:  objInfo.ExpirationObject(),
 	}
 	var (
 		err     error
 		exp     uint64
 		expTime time.Time
 	)
 	if expObj.Expiration.Days != nil {
 		expTime = objInfo.Created.Add(time.Duration(*expObj.Expiration.Days) * 24 * time.Hour).UTC()
 		// emulate rounding the resulting time to the next day midnight UTC
 		toMidnight := 24 - expTime.UTC().Hour()
 		expTime = expTime.Add(time.Duration(toMidnight) * time.Hour)
 	} else {
 		expTime, err = time.Parse(time.RFC3339, *expObj.Expiration.Date)
 		if err != nil {
 			return oid.ID{}, fmt.Errorf("couldn't parse expiration date '%s': %w", *expObj.Expiration.Date, err)
 		}
 	}
 	now := TimeNow(ctx)
 	if expTime.After(now) {
 		_, exp, err = n.frostFS.TimeToEpoch(ctx, now, expTime)
 		if err != nil {
 			return oid.ID{}, fmt.Errorf("couldn't compute expiration epoch: %w", err)
 		}
 	}
 	prm.Attributes = [][2]string{
 		{AttributeExpirationEpoch, strconv.FormatUint(exp+4, 10)},
 		{AttributeSysTickEpoch, strconv.FormatUint(exp, 10)},
 		{AttributeSysTickTopic, ExpireTopic},
 		{AttributeParentObject, objInfo.Name},
 		{AttributeParentBucket, bktInfo.Name},
 		{AttributeExpireDate, expTime.Format(time.RFC3339)},
 		{AttributeExpireRuleID, expObj.RuleID},
 		{AttributeLifecycleConfigID, expObj.LifecycleConfigID},
 	}
 	id, _, err := n.objectPutAndHash(ctx, prm, bktInfo)
 	return id, err
 }
 func (n *layer) GetLockInfo(ctx context.Context, objVersion *ObjectVersion) (*data.LockInfo, error) {
 	owner := n.Owner(ctx)
 	if lockInfo := n.cache.GetLockInfo(owner, lockObjectKey(objVersion)); lockInfo != nil {
@ -238,7 +285,7 @@ func (n *layer) attributesFromLock(ctx context.Context, lock *data.ObjectLock) (
 	}
 	if lock.LegalHold != nil && lock.LegalHold.Enabled {
-		// todo: (@KirillovDenis) reconsider this when FrostFS will support Legal Hold https://git.frostfs.info/TrueCloudLab/frostfs-contract/issues/2
+		// todo: (@KirillovDenis) reconsider this when FrostFS will support Legal Hold https://github.com/TrueCloudLab/frostfs-contract/issues/2
 		// Currently lock object must have an expiration epoch.
 		// Besides we need to override retention expiration epoch since legal hold cannot be deleted yet.
 		expEpoch = math.MaxUint64
@ -246,7 +293,7 @@ func (n *layer) attributesFromLock(ctx context.Context, lock *data.ObjectLock) (
 	if expEpoch != 0 {
 		result = append(result, [2]string{
-			object.SysAttributeExpEpoch, strconv.FormatUint(expEpoch, 10),
+			AttributeExpirationEpoch, strconv.FormatUint(expEpoch, 10),
 		})
 	}
--- a/api/layer/tagging.go
+++ b/api/layer/tagging.go
@ -4,12 +4,12 @@ import (
 	"context"
 	errorsStd "errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"go.uber.org/zap"
 )
--- a/api/layer/tree_mock.go
+++ b/api/layer/tree_mock.go
@ -6,8 +6,8 @@ import (
 	"sort"
 	"strings"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 )
 type TreeServiceMock struct {
@ -109,32 +109,11 @@ func (t *TreeServiceMock) PutNotificationConfigurationNode(ctx context.Context,
 }
 func (t *TreeServiceMock) GetBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) {
-	systemMap, ok := t.system[bktInfo.CID.EncodeToString()]
+	panic("implement me")
 	if !ok {
 		return oid.ID{}, nil
 	}
 	node, ok := systemMap["cors"]
 	if !ok {
 		return oid.ID{}, nil
 	}
 	return node.OID, nil
 }
 func (t *TreeServiceMock) PutBucketCORS(ctx context.Context, bktInfo *data.BucketInfo, objID oid.ID) (oid.ID, error) {
-	systemMap, ok := t.system[bktInfo.CID.EncodeToString()]
+	panic("implement me")
 	if !ok {
 		systemMap = make(map[string]*data.BaseNodeVersion)
 	}
 	systemMap["cors"] = &data.BaseNodeVersion{
 		OID: objID,
 	}
 	t.system[bktInfo.CID.EncodeToString()] = systemMap
 	return oid.ID{}, ErrNoNodeToRemove
 }
 func (t *TreeServiceMock) DeleteBucketCORS(ctx context.Context, bktInfo *data.BucketInfo) (oid.ID, error) {
--- a/api/layer/tree_service.go
+++ b/api/layer/tree_service.go
@ -4,8 +4,8 @@ import (
 	"context"
 	"errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
 )
 // TreeService provide interface to interact with tree service using s3 data models.
--- a/api/layer/util.go
+++ b/api/layer/util.go
@ -9,11 +9,11 @@ import (
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer/encryption"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
 )
 type (
--- a/api/layer/util_test.go
+++ b/api/layer/util_test.go
@ -6,11 +6,11 @@ import (
 	"testing"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/checksum"
+	"github.com/TrueCloudLab/frostfs-sdk-go/checksum"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/stretchr/testify/require"
 )
--- a/api/layer/versioning.go
+++ b/api/layer/versioning.go
@ -4,7 +4,7 @@ import (
 	"context"
 	"sort"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
 )
 func (n *layer) ListObjectVersions(ctx context.Context, p *ListObjectVersionsParams) (*ListObjectVersionsInfo, error) {
--- a/api/layer/versioning_test.go
+++ b/api/layer/versioning_test.go
@ -5,13 +5,13 @@ import (
 	"context"
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/data"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	bearertest "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer/test"
+	bearertest "github.com/TrueCloudLab/frostfs-sdk-go/bearer/test"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
+	"github.com/TrueCloudLab/frostfs-sdk-go/object"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"github.com/stretchr/testify/require"
 	"go.uber.org/zap"
--- a/api/max_clients.go
+++ b/api/max_clients.go
@ -4,7 +4,7 @@ import (
 	"net/http"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 )
 type (
--- a/api/metrics/api.go
+++ b/api/metrics/api.go
@ -1,7 +1,6 @@
-package api
+package metrics
 import (
 	"context"
 	"io"
 	"net/http"
 	"strings"
@ -9,68 +8,9 @@ import (
 	"sync/atomic"
 	"time"
 	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
 	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
 	"github.com/prometheus/client_golang/prometheus"
 )
 type RequestType int
 const (
 	UNKNOWNRequest RequestType = iota
 	HEADRequest    RequestType = iota
 	PUTRequest     RequestType = iota
 	LISTRequest    RequestType = iota
 	GETRequest     RequestType = iota
 	DELETERequest  RequestType = iota
 )
 func (t RequestType) String() string {
 	switch t {
 	case 1:
 		return "HEAD"
 	case 2:
 		return "PUT"
 	case 3:
 		return "LIST"
 	case 4:
 		return "GET"
 	case 5:
 		return "DELETE"
 	default:
 		return "Unknown"
 	}
 }
 func RequestTypeFromAPI(api string) RequestType {
 	switch api {
 	case "Options", "HeadObject", "HeadBucket":
 		return HEADRequest
 	case "CreateMultipartUpload", "UploadPartCopy", "UploadPart", "CompleteMultipartUpload",
 		"PutObjectACL", "PutObjectTagging", "CopyObject", "PutObjectRetention", "PutObjectLegalHold",
 		"PutObject", "PutBucketCors", "PutBucketACL", "PutBucketLifecycle", "PutBucketEncryption",
 		"PutBucketPolicy", "PutBucketObjectLockConfig", "PutBucketTagging", "PutBucketVersioning",
 		"PutBucketNotification", "CreateBucket", "PostObject":
 		return PUTRequest
 	case "ListObjectParts", "ListMultipartUploads", "ListObjectsV2M", "ListObjectsV2", "ListBucketVersions",
 		"ListObjectsV1", "ListBuckets":
 		return LISTRequest
 	case "GetObjectACL", "GetObjectTagging", "SelectObjectContent", "GetObjectRetention", "getobjectlegalhold",
 		"GetObjectAttributes", "GetObject", "GetBucketLocation", "GetBucketPolicy",
 		"GetBucketLifecycle", "GetBucketEncryption", "GetBucketCors", "GetBucketACL",
 		"GetBucketWebsite", "GetBucketAccelerate", "GetBucketRequestPayment", "GetBucketLogging",
 		"GetBucketReplication", "GetBucketTagging", "GetBucketObjectLockConfig",
 		"GetBucketVersioning", "GetBucketNotification", "ListenBucketNotification":
 		return GETRequest
 	case "AbortMultipartUpload", "DeleteObjectTagging", "DeleteObject", "DeleteBucketCors",
 		"DeleteBucketWebsite", "DeleteBucketTagging", "DeleteMultipleObjects", "DeleteBucketPolicy",
 		"DeleteBucketLifecycle", "DeleteBucketEncryption", "DeleteBucket":
 		return DELETERequest
 	default:
 		return UNKNOWNRequest
 	}
 }
 type (
 	// HTTPAPIStats holds statistics information about
 	// the API given in the requests.
@ -79,10 +19,6 @@ type (
 		sync.RWMutex
 	}
 	UsersStat interface {
 		Update(user, bucket, cnrID string, reqType RequestType, in, out uint64)
 	}
 	// HTTPStats holds statistics information about
 	// HTTP requests made by all clients.
 	HTTPStats struct {
@ -167,16 +103,11 @@ func collectHTTPMetrics(ch chan<- prometheus.Metric) {
 	}
 }
-// CIDResolveFunc is a func to resolve CID in Stats handler.
+// APIStats wraps http handler for api with basic statistics collection.
-type CIDResolveFunc func(ctx context.Context, reqInfo *ReqInfo) (cnrID string)
+func APIStats(api string, f http.HandlerFunc) http.HandlerFunc {
 // Stats is a handler that update metrics.
 func Stats(f http.HandlerFunc, resolveCID CIDResolveFunc, usersStat UsersStat) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
-		reqInfo := GetReqInfo(r.Context())
+		httpStatsMetric.currentS3Requests.Inc(api)
-
+		defer httpStatsMetric.currentS3Requests.Dec(api)
 		httpStatsMetric.currentS3Requests.Inc(reqInfo.API)
 		defer httpStatsMetric.currentS3Requests.Dec(reqInfo.API)
 		in := &readCounter{ReadCloser: r.Body}
 		out := &writeCounter{ResponseWriter: w}
@ -188,45 +119,20 @@ func Stats(f http.HandlerFunc, resolveCID CIDResolveFunc, usersStat UsersStat) h
 			startTime:      time.Now(),
 		}
-		f(statsWriter, r)
+		f.ServeHTTP(statsWriter, r)
 		// Time duration in secs since the call started.
 		// We don't need to do nanosecond precision here
-		// simply for the fact that it is not human-readable.
+		// simply for the fact that it is not human readable.
 		durationSecs := time.Since(statsWriter.startTime).Seconds()
-		user := resolveUser(r.Context())
+		httpStatsMetric.updateStats(api, statsWriter, r, durationSecs)
 		cnrID := resolveCID(r.Context(), reqInfo)
 		usersStat.Update(user, reqInfo.BucketName, cnrID, RequestTypeFromAPI(reqInfo.API), in.countBytes, out.countBytes)
 		code := statsWriter.statusCode
 		// A successful request has a 2xx response code
 		successReq := code >= http.StatusOK && code < http.StatusMultipleChoices
 		if !strings.HasSuffix(r.URL.Path, systemPath) {
 			httpStatsMetric.totalS3Requests.Inc(reqInfo.API)
 			if !successReq && code != 0 {
 				httpStatsMetric.totalS3Errors.Inc(reqInfo.API)
 			}
 		}
 		if r.Method == http.MethodGet {
 			// Increment the prometheus http request response histogram with appropriate label
 			httpRequestsDuration.With(prometheus.Labels{"api": reqInfo.API}).Observe(durationSecs)
 		}
 		atomic.AddUint64(&httpStatsMetric.totalInputBytes, in.countBytes)
 		atomic.AddUint64(&httpStatsMetric.totalOutputBytes, out.countBytes)
 	}
 }
 func resolveUser(ctx context.Context) string {
 	user := "anon"
 	if bd, ok := ctx.Value(BoxData).(*accessbox.Box); ok && bd != nil && bd.Gate != nil && bd.Gate.BearerToken != nil {
 		user = bearer.ResolveIssuer(*bd.Gate.BearerToken).String()
 	}
 	return user
 }
 // Inc increments the api stats counter.
 func (stats *HTTPAPIStats) Inc(api string) {
 	if stats == nil {
@ -271,6 +177,30 @@ func (st *HTTPStats) getOutputBytes() uint64 {
 	return atomic.LoadUint64(&st.totalOutputBytes)
 }
 // Update statistics from http request and response data.
 func (st *HTTPStats) updateStats(api string, w http.ResponseWriter, r *http.Request, durationSecs float64) {
 	var code int
 	if res, ok := w.(*responseWrapper); ok {
 		code = res.statusCode
 	}
 	// A successful request has a 2xx response code
 	successReq := code >= http.StatusOK && code < http.StatusMultipleChoices
 	if !strings.HasSuffix(r.URL.Path, systemPath) {
 		st.totalS3Requests.Inc(api)
 		if !successReq && code != 0 {
 			st.totalS3Errors.Inc(api)
 		}
 	}
 	if r.Method == http.MethodGet {
 		// Increment the prometheus http request response histogram with appropriate label
 		httpRequestsDuration.With(prometheus.Labels{"api": api}).Observe(durationSecs)
 	}
 }
 // WriteHeader -- writes http status code.
 func (w *responseWrapper) WriteHeader(code int) {
 	w.Do(func() {
@ -286,12 +216,6 @@ func (w *responseWrapper) Flush() {
 	}
 }
 func (w *writeCounter) Flush() {
 	if f, ok := w.ResponseWriter.(http.Flusher); ok {
 		f.Flush()
 	}
 }
 func (w *writeCounter) Write(p []byte) (int, error) {
 	n, err := w.ResponseWriter.Write(p)
 	atomic.AddUint64(&w.countBytes, uint64(n))
--- a/api/metrics/collector.go
+++ b/api/metrics/collector.go
@ -1,7 +1,7 @@
-package api
+package metrics
 import (
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/version"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/version"
 	"github.com/prometheus/client_golang/prometheus"
 )
--- a/api/notifications/controller.go
+++ b/api/notifications/controller.go
@ -7,8 +7,8 @@ import (
 	"sync"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/handler"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/handler"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
 	"github.com/nats-io/nats.go"
 	"go.uber.org/zap"
 )
--- a/api/resolver/resolver.go
+++ b/api/resolver/resolver.go
@ -6,9 +6,9 @@ import (
 	"fmt"
 	"sync"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container"
+	"github.com/TrueCloudLab/frostfs-sdk-go/container"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/ns"
+	"github.com/TrueCloudLab/frostfs-sdk-go/ns"
 )
 const (
--- a/api/response.go
+++ b/api/response.go
@ -7,8 +7,8 @@ import (
 	"net/http"
 	"strconv"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/version"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/version"
 	"github.com/google/uuid"
 )
@ -133,13 +133,6 @@ func WriteErrorResponse(w http.ResponseWriter, reqInfo *ReqInfo, err error) int
 	return code
 }
 // WriteErrorResponseNoHeader writes XML encoded error to the response body.
 func WriteErrorResponseNoHeader(w http.ResponseWriter, reqInfo *ReqInfo, err error) {
 	errorResponse := getAPIErrorResponse(reqInfo, err)
 	encodedErrorResponse := EncodeResponse(errorResponse)
 	WriteResponseBody(w, encodedErrorResponse)
 }
 // If none of the http routes match respond with appropriate errors.
 func errorResponseHandler(w http.ResponseWriter, r *http.Request) {
 	desc := fmt.Sprintf("Unknown API request at %s", r.URL.Path)
@ -179,11 +172,6 @@ func WriteResponse(w http.ResponseWriter, statusCode int, response []byte, mType
 		return
 	}
 	WriteResponseBody(w, response)
 }
 // WriteResponseBody writes response into w.
 func WriteResponseBody(w http.ResponseWriter, response []byte) {
 	_, _ = w.Write(response)
 	if flusher, ok := w.(http.Flusher); ok {
 		flusher.Flush()
@ -200,30 +188,13 @@ func EncodeResponse(response interface{}) []byte {
 	return bytesBuffer.Bytes()
 }
 // EncodeResponseNoHeader encodes response without setting xml.Header.
 // Should be used with periodicXMLWriter which sends xml.Header to the client
 // with whitespaces to keep connection alive.
 func EncodeResponseNoHeader(response interface{}) []byte {
 	var bytesBuffer bytes.Buffer
 	_ = xml.NewEncoder(&bytesBuffer).Encode(response)
 	return bytesBuffer.Bytes()
 }
 // EncodeToResponse encodes the response into ResponseWriter.
 func EncodeToResponse(w http.ResponseWriter, response interface{}) error {
 	w.WriteHeader(http.StatusOK)
 	if _, err := w.Write(xmlHeader); err != nil {
 		return fmt.Errorf("write headers: %w", err)
-	}
+	} else if err = xml.NewEncoder(w).Encode(response); err != nil {
 	return EncodeToResponseNoHeader(w, response)
 }
 // EncodeToResponseNoHeader encodes the response into ResponseWriter without
 // header status.
 func EncodeToResponseNoHeader(w http.ResponseWriter, response interface{}) error {
 	if err := xml.NewEncoder(w).Encode(response); err != nil {
 		return fmt.Errorf("encode xml response: %w", err)
 	}
--- a/api/router.go
+++ b/api/router.go
@ -5,8 +5,8 @@ import (
 	"net/http"
 	"sync"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/auth"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/auth"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/data"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/metrics"
 	"github.com/google/uuid"
 	"github.com/gorilla/mux"
 	"go.uber.org/zap"
@ -82,8 +82,6 @@ type (
 		AbortMultipartUploadHandler(http.ResponseWriter, *http.Request)
 		ListPartsHandler(w http.ResponseWriter, r *http.Request)
 		ListMultipartUploadsHandler(http.ResponseWriter, *http.Request)
 		ResolveBucket(ctx context.Context, bucket string) (*data.BucketInfo, error)
 	}
 	// mimeType represents various MIME types used in API responses.
@ -108,7 +106,7 @@ const (
 	MimeXML mimeType = "application/xml"
 )
-var _ = logSuccessResponse
+var _ = logErrorResponse
 func (lrw *logResponseWriter) WriteHeader(code int) {
 	lrw.Do(func() {
@ -117,12 +115,6 @@ func (lrw *logResponseWriter) WriteHeader(code int) {
 	})
 }
 func (lrw *logResponseWriter) Flush() {
 	if f, ok := lrw.ResponseWriter.(http.Flusher); ok {
 		f.Flush()
 	}
 }
 func setRequestID(h http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		// generate random UUIDv4
@ -153,37 +145,7 @@ func appendCORS(handler Handler) mux.MiddlewareFunc {
 	}
 }
-// BucketResolveFunc is a func to resolve bucket info by name.
+func logErrorResponse(l *zap.Logger) mux.MiddlewareFunc {
 type BucketResolveFunc func(ctx context.Context, bucket string) (*data.BucketInfo, error)
 // metricsMiddleware wraps http handler for api with basic statistics collection.
 func metricsMiddleware(log *zap.Logger, resolveBucket BucketResolveFunc, usersStat UsersStat) mux.MiddlewareFunc {
 	return func(h http.Handler) http.Handler {
 		return Stats(h.ServeHTTP, resolveCID(log, resolveBucket), usersStat)
 	}
 }
 // resolveCID forms CIDResolveFunc using BucketResolveFunc.
 func resolveCID(log *zap.Logger, resolveBucket BucketResolveFunc) CIDResolveFunc {
 	return func(ctx context.Context, reqInfo *ReqInfo) (cnrID string) {
 		if reqInfo.BucketName == "" || reqInfo.API == "CreateBucket" || reqInfo.API == "" {
 			return ""
 		}
 		bktInfo, err := resolveBucket(ctx, reqInfo.BucketName)
 		if err != nil {
 			log.Debug("failed to resolve CID",
 				zap.String("request_id", reqInfo.RequestID), zap.String("method", reqInfo.API),
 				zap.String("bucket", reqInfo.BucketName), zap.String("object", reqInfo.ObjectName),
 				zap.Error(err))
 			return ""
 		}
 		return bktInfo.CID.EncodeToString()
 	}
 }
 func logSuccessResponse(l *zap.Logger) mux.MiddlewareFunc {
 	return func(h http.Handler) http.Handler {
 		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 			lw := &logResponseWriter{ResponseWriter: w}
@ -221,49 +183,21 @@ func GetRequestID(v interface{}) string {
 	}
 }
 func setErrorAPI(apiName string, h http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		ctx := SetReqInfo(r.Context(), &ReqInfo{API: apiName})
 		h.ServeHTTP(w, r.WithContext(ctx))
 	})
 }
 // attachErrorHandler set NotFoundHandler and MethodNotAllowedHandler for mux.Router.
 func attachErrorHandler(api *mux.Router, log *zap.Logger, h Handler, center auth.Center, usersStat UsersStat) {
 	middlewares := []mux.MiddlewareFunc{
 		AuthMiddleware(log, center),
 		metricsMiddleware(log, h.ResolveBucket, usersStat),
 	}
 	var errorHandler http.Handler = http.HandlerFunc(errorResponseHandler)
 	for i := len(middlewares) - 1; i >= 0; i-- {
 		errorHandler = middlewares[i](errorHandler)
 	}
 	// If none of the routes match, add default error handler routes
 	api.NotFoundHandler = setErrorAPI("NotFound", errorHandler)
 	api.MethodNotAllowedHandler = setErrorAPI("MethodNotAllowed", errorHandler)
 }
 // Attach adds S3 API handlers from h to r for domains with m client limit using
 // center authentication and log logger.
-func Attach(r *mux.Router, domains []string, m MaxClients, h Handler, center auth.Center, log *zap.Logger, usersStat UsersStat) {
+func Attach(r *mux.Router, domains []string, m MaxClients, h Handler, center auth.Center, log *zap.Logger) {
 	api := r.PathPrefix(SlashSeparator).Subrouter()
 	api.Use(
 		// -- prepare request
 		setRequestID,
 		// Attach user authentication for all S3 routes.
 		AuthMiddleware(log, center),
 		metricsMiddleware(log, h.ResolveBucket, usersStat),
 		// -- logging error requests
-		logSuccessResponse(log),
+		logErrorResponse(log),
 	)
-	attachErrorHandler(api, log, h, center, usersStat)
+	// Attach user authentication for all S3 routes.
 	AttachUserAuth(api, center, log)
 	buckets := make([]*mux.Router, 0, len(domains)+1)
 	buckets = append(buckets, api.PathPrefix("/{bucket}").Subrouter())
@ -279,327 +213,277 @@ func Attach(r *mux.Router, domains []string, m MaxClients, h Handler, center aut
 			// -- append CORS headers to a response for
 			appendCORS(h),
 		)
-		bucket.Methods(http.MethodOptions).HandlerFunc(
+		bucket.Methods(http.MethodOptions).HandlerFunc(m.Handle(metrics.APIStats("preflight", h.Preflight))).Name("Options")
 			m.Handle(h.Preflight)).
 			Name("Options")
 		bucket.Methods(http.MethodHead).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.HeadObjectHandler)).
+			m.Handle(metrics.APIStats("headobject", h.HeadObjectHandler))).Name("HeadObject")
 			Name("HeadObject")
 		// CopyObjectPart
-		bucket.Methods(http.MethodPut).Path("/{object:.+}").Headers(hdrAmzCopySource, "").HandlerFunc(
+		bucket.Methods(http.MethodPut).Path("/{object:.+}").Headers(hdrAmzCopySource, "").HandlerFunc(m.Handle(metrics.APIStats("uploadpartcopy", h.UploadPartCopy))).Queries("partNumber", "{partNumber:[0-9]+}", "uploadId", "{uploadId:.*}").
 			m.Handle(h.UploadPartCopy)).
 			Queries("partNumber", "{partNumber:[0-9]+}", "uploadId", "{uploadId:.*}").
 			Name("UploadPartCopy")
 		// PutObjectPart
 		bucket.Methods(http.MethodPut).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.UploadPartHandler)).
+			m.Handle(metrics.APIStats("uploadpart", h.UploadPartHandler))).Queries("partNumber", "{partNumber:[0-9]+}", "uploadId", "{uploadId:.*}").
 			Queries("partNumber", "{partNumber:[0-9]+}", "uploadId", "{uploadId:.*}").
 			Name("UploadPart")
 		// ListParts
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.ListPartsHandler)).
+			m.Handle(metrics.APIStats("listobjectparts", h.ListPartsHandler))).Queries("uploadId", "{uploadId:.*}").
 			Queries("uploadId", "{uploadId:.*}").
 			Name("ListObjectParts")
 		// CompleteMultipartUpload
 		bucket.Methods(http.MethodPost).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.CompleteMultipartUploadHandler)).
+			m.Handle(metrics.APIStats("completemutipartupload", h.CompleteMultipartUploadHandler))).Queries("uploadId", "{uploadId:.*}").
 			Queries("uploadId", "{uploadId:.*}").
 			Name("CompleteMultipartUpload")
 		// CreateMultipartUpload
 		bucket.Methods(http.MethodPost).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.CreateMultipartUploadHandler)).
+			m.Handle(metrics.APIStats("createmultipartupload", h.CreateMultipartUploadHandler))).Queries("uploads", "").
 			Queries("uploads", "").
 			Name("CreateMultipartUpload")
 		// AbortMultipartUpload
 		bucket.Methods(http.MethodDelete).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.AbortMultipartUploadHandler)).
+			m.Handle(metrics.APIStats("abortmultipartupload", h.AbortMultipartUploadHandler))).Queries("uploadId", "{uploadId:.*}").
 			Queries("uploadId", "{uploadId:.*}").
 			Name("AbortMultipartUpload")
 		// ListMultipartUploads
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.ListMultipartUploadsHandler)).
+			m.Handle(metrics.APIStats("listmultipartuploads", h.ListMultipartUploadsHandler))).Queries("uploads", "").
 			Queries("uploads", "").
 			Name("ListMultipartUploads")
 		// GetObjectACL -- this is a dummy call.
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.GetObjectACLHandler)).
+			m.Handle(metrics.APIStats("getobjectacl", h.GetObjectACLHandler))).Queries("acl", "").
 			Queries("acl", "").
 			Name("GetObjectACL")
 		// PutObjectACL -- this is a dummy call.
 		bucket.Methods(http.MethodPut).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.PutObjectACLHandler)).
+			m.Handle(metrics.APIStats("putobjectacl", h.PutObjectACLHandler))).Queries("acl", "").
 			Queries("acl", "").
 			Name("PutObjectACL")
 		// GetObjectTagging
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.GetObjectTaggingHandler)).
+			m.Handle(metrics.APIStats("getobjecttagging", h.GetObjectTaggingHandler))).Queries("tagging", "").
 			Queries("tagging", "").
 			Name("GetObjectTagging")
 		// PutObjectTagging
 		bucket.Methods(http.MethodPut).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.PutObjectTaggingHandler)).
+			m.Handle(metrics.APIStats("putobjecttagging", h.PutObjectTaggingHandler))).Queries("tagging", "").
 			Queries("tagging", "").
 			Name("PutObjectTagging")
 		// DeleteObjectTagging
 		bucket.Methods(http.MethodDelete).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.DeleteObjectTaggingHandler)).
+			m.Handle(metrics.APIStats("deleteobjecttagging", h.DeleteObjectTaggingHandler))).Queries("tagging", "").
 			Queries("tagging", "").
 			Name("DeleteObjectTagging")
 		// SelectObjectContent
 		bucket.Methods(http.MethodPost).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.SelectObjectContentHandler)).
+			m.Handle(metrics.APIStats("selectobjectcontent", h.SelectObjectContentHandler))).Queries("select", "").Queries("select-type", "2").
 			Queries("select", "").Queries("select-type", "2").
 			Name("SelectObjectContent")
 		// GetObjectRetention
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.GetObjectRetentionHandler)).
+			m.Handle(metrics.APIStats("getobjectretention", h.GetObjectRetentionHandler))).Queries("retention", "").
 			Queries("retention", "").
 			Name("GetObjectRetention")
 		// GetObjectLegalHold
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.GetObjectLegalHoldHandler)).
+			m.Handle(metrics.APIStats("getobjectlegalhold", h.GetObjectLegalHoldHandler))).Queries("legal-hold", "").
 			Queries("legal-hold", "").
 			Name("GetObjectLegalHold")
 		// GetObjectAttributes
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.GetObjectAttributesHandler)).
+			m.Handle(metrics.APIStats("getobjectattributes", h.GetObjectAttributesHandler))).Queries("attributes", "").
 			Queries("attributes", "").
 			Name("GetObjectAttributes")
 		// GetObject
 		bucket.Methods(http.MethodGet).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.GetObjectHandler)).
+			m.Handle(metrics.APIStats("getobject", h.GetObjectHandler))).
 			Name("GetObject")
 		// CopyObject
-		bucket.Methods(http.MethodPut).Path("/{object:.+}").Headers(hdrAmzCopySource, "").HandlerFunc(
+		bucket.Methods(http.MethodPut).Path("/{object:.+}").Headers(hdrAmzCopySource, "").HandlerFunc(m.Handle(metrics.APIStats("copyobject", h.CopyObjectHandler))).
 			m.Handle(h.CopyObjectHandler)).
 			Name("CopyObject")
 		// PutObjectRetention
 		bucket.Methods(http.MethodPut).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.PutObjectRetentionHandler)).
+			m.Handle(metrics.APIStats("putobjectretention", h.PutObjectRetentionHandler))).Queries("retention", "").
 			Queries("retention", "").
 			Name("PutObjectRetention")
 		// PutObjectLegalHold
 		bucket.Methods(http.MethodPut).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.PutObjectLegalHoldHandler)).
+			m.Handle(metrics.APIStats("putobjectlegalhold", h.PutObjectLegalHoldHandler))).Queries("legal-hold", "").
 			Queries("legal-hold", "").
 			Name("PutObjectLegalHold")
 		// PutObject
 		bucket.Methods(http.MethodPut).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.PutObjectHandler)).
+			m.Handle(metrics.APIStats("putobject", h.PutObjectHandler))).
 			Name("PutObject")
 		// DeleteObject
 		bucket.Methods(http.MethodDelete).Path("/{object:.+}").HandlerFunc(
-			m.Handle(h.DeleteObjectHandler)).
+			m.Handle(metrics.APIStats("deleteobject", h.DeleteObjectHandler))).
 			Name("DeleteObject")
 		// Bucket operations
 		// GetBucketLocation
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketLocationHandler)).
+			m.Handle(metrics.APIStats("getbucketlocation", h.GetBucketLocationHandler))).Queries("location", "").
 			Queries("location", "").
 			Name("GetBucketLocation")
 		// GetBucketPolicy
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketPolicyHandler)).
+			m.Handle(metrics.APIStats("getbucketpolicy", h.GetBucketPolicyHandler))).Queries("policy", "").
 			Queries("policy", "").
 			Name("GetBucketPolicy")
 		// GetBucketLifecycle
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketLifecycleHandler)).
+			m.Handle(metrics.APIStats("getbucketlifecycle", h.GetBucketLifecycleHandler))).Queries("lifecycle", "").
 			Queries("lifecycle", "").
 			Name("GetBucketLifecycle")
 		// GetBucketEncryption
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketEncryptionHandler)).
+			m.Handle(metrics.APIStats("getbucketencryption", h.GetBucketEncryptionHandler))).Queries("encryption", "").
 			Queries("encryption", "").
 			Name("GetBucketEncryption")
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketCorsHandler)).
+			m.Handle(metrics.APIStats("getbucketcors", h.GetBucketCorsHandler))).Queries("cors", "").
 			Queries("cors", "").
 			Name("GetBucketCors")
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketCorsHandler)).
+			m.Handle(metrics.APIStats("putbucketcors", h.PutBucketCorsHandler))).Queries("cors", "").
 			Queries("cors", "").
 			Name("PutBucketCors")
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketCorsHandler)).
+			m.Handle(metrics.APIStats("deletebucketcors", h.DeleteBucketCorsHandler))).Queries("cors", "").
 			Queries("cors", "").
 			Name("DeleteBucketCors")
 		// Dummy Bucket Calls
 		// GetBucketACL -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketACLHandler)).
+			m.Handle(metrics.APIStats("getbucketacl", h.GetBucketACLHandler))).Queries("acl", "").
 			Queries("acl", "").
 			Name("GetBucketACL")
 		// PutBucketACL -- this is a dummy call.
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketACLHandler)).
+			m.Handle(metrics.APIStats("putbucketacl", h.PutBucketACLHandler))).Queries("acl", "").
 			Queries("acl", "").
 			Name("PutBucketACL")
 		// GetBucketWebsiteHandler -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketWebsiteHandler)).
+			m.Handle(metrics.APIStats("getbucketwebsite", h.GetBucketWebsiteHandler))).Queries("website", "").
 			Queries("website", "").
 			Name("GetBucketWebsite")
 		// GetBucketAccelerateHandler -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketAccelerateHandler)).
+			m.Handle(metrics.APIStats("getbucketaccelerate", h.GetBucketAccelerateHandler))).Queries("accelerate", "").
 			Queries("accelerate", "").
 			Name("GetBucketAccelerate")
 		// GetBucketRequestPaymentHandler -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketRequestPaymentHandler)).
+			m.Handle(metrics.APIStats("getbucketrequestpayment", h.GetBucketRequestPaymentHandler))).Queries("requestPayment", "").
 			Queries("requestPayment", "").
 			Name("GetBucketRequestPayment")
 		// GetBucketLoggingHandler -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketLoggingHandler)).
+			m.Handle(metrics.APIStats("getbucketlogging", h.GetBucketLoggingHandler))).Queries("logging", "").
 			Queries("logging", "").
 			Name("GetBucketLogging")
 		// GetBucketLifecycleHandler -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
 			m.Handle(metrics.APIStats("getbucketlifecycle", h.GetBucketLifecycleHandler))).Queries("lifecycle", "").
 			Name("GetBucketLifecycle")
 		// GetBucketReplicationHandler -- this is a dummy call.
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketReplicationHandler)).
+			m.Handle(metrics.APIStats("getbucketreplication", h.GetBucketReplicationHandler))).Queries("replication", "").
 			Queries("replication", "").
 			Name("GetBucketReplication")
 		// GetBucketTaggingHandler
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketTaggingHandler)).
+			m.Handle(metrics.APIStats("getbuckettagging", h.GetBucketTaggingHandler))).Queries("tagging", "").
 			Queries("tagging", "").
 			Name("GetBucketTagging")
 		// DeleteBucketWebsiteHandler
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketWebsiteHandler)).
+			m.Handle(metrics.APIStats("deletebucketwebsite", h.DeleteBucketWebsiteHandler))).Queries("website", "").
 			Queries("website", "").
 			Name("DeleteBucketWebsite")
 		// DeleteBucketTaggingHandler
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketTaggingHandler)).
+			m.Handle(metrics.APIStats("deletebuckettagging", h.DeleteBucketTaggingHandler))).Queries("tagging", "").
 			Queries("tagging", "").
 			Name("DeleteBucketTagging")
 		// GetBucketObjectLockConfig
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketObjectLockConfigHandler)).
+			m.Handle(metrics.APIStats("getbucketobjectlockconfiguration", h.GetBucketObjectLockConfigHandler))).Queries("object-lock", "").
 			Queries("object-lock", "").
 			Name("GetBucketObjectLockConfig")
 		// GetBucketVersioning
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketVersioningHandler)).
+			m.Handle(metrics.APIStats("getbucketversioning", h.GetBucketVersioningHandler))).Queries("versioning", "").
 			Queries("versioning", "").
 			Name("GetBucketVersioning")
 		// GetBucketNotification
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.GetBucketNotificationHandler)).
+			m.Handle(metrics.APIStats("getbucketnotification", h.GetBucketNotificationHandler))).Queries("notification", "").
 			Queries("notification", "").
 			Name("GetBucketNotification")
 		// ListenBucketNotification
-		bucket.Methods(http.MethodGet).HandlerFunc(h.ListenBucketNotificationHandler).
+		bucket.Methods(http.MethodGet).HandlerFunc(metrics.APIStats("listenbucketnotification", h.ListenBucketNotificationHandler)).Queries("events", "{events:.*}").
 			Queries("events", "{events:.*}").
 			Name("ListenBucketNotification")
 		// ListObjectsV2M
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.ListObjectsV2MHandler)).
+			m.Handle(metrics.APIStats("listobjectsv2M", h.ListObjectsV2MHandler))).Queries("list-type", "2", "metadata", "true").
 			Queries("list-type", "2", "metadata", "true").
 			Name("ListObjectsV2M")
 		// ListObjectsV2
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.ListObjectsV2Handler)).
+			m.Handle(metrics.APIStats("listobjectsv2", h.ListObjectsV2Handler))).Queries("list-type", "2").
 			Queries("list-type", "2").
 			Name("ListObjectsV2")
 		// ListBucketVersions
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.ListBucketObjectVersionsHandler)).
+			m.Handle(metrics.APIStats("listbucketversions", h.ListBucketObjectVersionsHandler))).Queries("versions", "").
 			Queries("versions", "").
 			Name("ListBucketVersions")
 		// ListObjectsV1 (Legacy)
 		bucket.Methods(http.MethodGet).HandlerFunc(
-			m.Handle(h.ListObjectsV1Handler)).
+			m.Handle(metrics.APIStats("listobjectsv1", h.ListObjectsV1Handler))).
 			Name("ListObjectsV1")
 		// PutBucketLifecycle
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketLifecycleHandler)).
+			m.Handle(metrics.APIStats("putbucketlifecycle", h.PutBucketLifecycleHandler))).Queries("lifecycle", "").
 			Queries("lifecycle", "").
 			Name("PutBucketLifecycle")
 		// PutBucketEncryption
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketEncryptionHandler)).
+			m.Handle(metrics.APIStats("putbucketencryption", h.PutBucketEncryptionHandler))).Queries("encryption", "").
 			Queries("encryption", "").
 			Name("PutBucketEncryption")
 		// PutBucketPolicy
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketPolicyHandler)).
+			m.Handle(metrics.APIStats("putbucketpolicy", h.PutBucketPolicyHandler))).Queries("policy", "").
 			Queries("policy", "").
 			Name("PutBucketPolicy")
 		// PutBucketObjectLockConfig
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketObjectLockConfigHandler)).
+			m.Handle(metrics.APIStats("putbucketobjectlockconfig", h.PutBucketObjectLockConfigHandler))).Queries("object-lock", "").
 			Queries("object-lock", "").
 			Name("PutBucketObjectLockConfig")
 		// PutBucketTaggingHandler
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketTaggingHandler)).
+			m.Handle(metrics.APIStats("putbuckettagging", h.PutBucketTaggingHandler))).Queries("tagging", "").
 			Queries("tagging", "").
 			Name("PutBucketTagging")
 		// PutBucketVersioning
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketVersioningHandler)).
+			m.Handle(metrics.APIStats("putbucketversioning", h.PutBucketVersioningHandler))).Queries("versioning", "").
 			Queries("versioning", "").
 			Name("PutBucketVersioning")
 		// PutBucketNotification
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.PutBucketNotificationHandler)).
+			m.Handle(metrics.APIStats("putbucketnotification", h.PutBucketNotificationHandler))).Queries("notification", "").
 			Queries("notification", "").
 			Name("PutBucketNotification")
 		// CreateBucket
 		bucket.Methods(http.MethodPut).HandlerFunc(
-			m.Handle(h.CreateBucketHandler)).
+			m.Handle(metrics.APIStats("createbucket", h.CreateBucketHandler))).
 			Name("CreateBucket")
 		// HeadBucket
 		bucket.Methods(http.MethodHead).HandlerFunc(
-			m.Handle(h.HeadBucketHandler)).
+			m.Handle(metrics.APIStats("headbucket", h.HeadBucketHandler))).
 			Name("HeadBucket")
 		// PostPolicy
 		bucket.Methods(http.MethodPost).HeadersRegexp(hdrContentType, "multipart/form-data*").HandlerFunc(
-			m.Handle(h.PostObject)).
+			m.Handle(metrics.APIStats("postobject", h.PostObject))).
 			Name("PostObject")
 		// DeleteMultipleObjects
 		bucket.Methods(http.MethodPost).HandlerFunc(
-			m.Handle(h.DeleteMultipleObjectsHandler)).
+			m.Handle(metrics.APIStats("deletemultipleobjects", h.DeleteMultipleObjectsHandler))).Queries("delete", "").
 			Queries("delete", "").
 			Name("DeleteMultipleObjects")
 		// DeleteBucketPolicy
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketPolicyHandler)).
+			m.Handle(metrics.APIStats("deletebucketpolicy", h.DeleteBucketPolicyHandler))).Queries("policy", "").
 			Queries("policy", "").
 			Name("DeleteBucketPolicy")
 		// DeleteBucketLifecycle
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketLifecycleHandler)).
+			m.Handle(metrics.APIStats("deletebucketlifecycle", h.DeleteBucketLifecycleHandler))).Queries("lifecycle", "").
 			Queries("lifecycle", "").
 			Name("DeleteBucketLifecycle")
 		// DeleteBucketEncryption
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketEncryptionHandler)).
+			m.Handle(metrics.APIStats("deletebucketencryption", h.DeleteBucketEncryptionHandler))).Queries("encryption", "").
 			Queries("encryption", "").
 			Name("DeleteBucketEncryption")
 		// DeleteBucket
 		bucket.Methods(http.MethodDelete).HandlerFunc(
-			m.Handle(h.DeleteBucketHandler)).
+			m.Handle(metrics.APIStats("deletebucket", h.DeleteBucketHandler))).
 			Name("DeleteBucket")
 	}
 	// Root operation
 	// ListBuckets
 	api.Methods(http.MethodGet).Path(SlashSeparator).HandlerFunc(
-		m.Handle(h.ListBucketsHandler)).
+		m.Handle(metrics.APIStats("listbuckets", h.ListBucketsHandler))).
 		Name("ListBuckets")
 	// S3 browser with signature v4 adds '//' for ListBuckets request, so rather
 	// than failing with UnknownAPIRequest we simply handle it for now.
 	api.Methods(http.MethodGet).Path(SlashSeparator + SlashSeparator).HandlerFunc(
-		m.Handle(h.ListBucketsHandler)).
+		m.Handle(metrics.APIStats("listbuckets", h.ListBucketsHandler))).
 		Name("ListBuckets")
 	// If none of the routes match, add default error handler routes
 	api.NotFoundHandler = metrics.APIStats("notfound", errorResponseHandler)
 	api.MethodNotAllowedHandler = metrics.APIStats("methodnotallowed", errorResponseHandler)
 }
--- a/api/user_auth.go
+++ b/api/user_auth.go
@ -4,8 +4,8 @@ import (
 	"context"
 	"net/http"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/auth"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/auth"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/errors"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/errors"
 	"github.com/gorilla/mux"
 	"go.uber.org/zap"
 )
@ -19,9 +19,9 @@ var BoxData = KeyWrapper("__context_box_key")
 // ClientTime is an ID used to store client time.Time in a context.
 var ClientTime = KeyWrapper("__context_client_time")
-// AuthMiddleware adds user authentication via center to router using log for logging.
+// AttachUserAuth adds user authentication via center to router using log for logging.
-func AuthMiddleware(log *zap.Logger, center auth.Center) mux.MiddlewareFunc {
+func AttachUserAuth(router *mux.Router, center auth.Center, log *zap.Logger) {
-	return func(h http.Handler) http.Handler {
+	router.Use(func(h http.Handler) http.Handler {
 		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 			var ctx context.Context
 			box, err := center.Authenticate(r)
@ -46,5 +46,5 @@ func AuthMiddleware(log *zap.Logger, center auth.Center) mux.MiddlewareFunc {
 			h.ServeHTTP(w, r.WithContext(ctx))
 		})
-	}
+	})
 }
--- a/authmate/authmate.go
+++ b/authmate/authmate.go
@ -11,17 +11,17 @@ import (
 	"os"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/cache"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/cache"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/accessbox"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/creds/tokens"
+	"github.com/TrueCloudLab/frostfs-s3-gw/creds/tokens"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/bearer"
+	"github.com/TrueCloudLab/frostfs-sdk-go/bearer"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	frostfsecdsa "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/crypto/ecdsa"
+	frostfsecdsa "github.com/TrueCloudLab/frostfs-sdk-go/crypto/ecdsa"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/eacl"
+	"github.com/TrueCloudLab/frostfs-sdk-go/eacl"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap"
+	"github.com/TrueCloudLab/frostfs-sdk-go/netmap"
-	oid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object/id"
+	oid "github.com/TrueCloudLab/frostfs-sdk-go/object/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
+	"github.com/TrueCloudLab/frostfs-sdk-go/user"
 	"github.com/google/uuid"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"go.uber.org/zap"
--- a/authmate/session_tokens.go
+++ b/authmate/session_tokens.go
@ -4,9 +4,9 @@ import (
 	"encoding/json"
 	"fmt"
-	apisession "git.frostfs.info/TrueCloudLab/frostfs-api-go/v2/session"
+	apisession "github.com/TrueCloudLab/frostfs-api-go/v2/session"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 )
 type (
--- a/authmate/session_tokens_test.go
+++ b/authmate/session_tokens_test.go
@ -3,7 +3,7 @@ package authmate
 import (
 	"testing"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/session"
+	"github.com/TrueCloudLab/frostfs-sdk-go/session"
 	"github.com/stretchr/testify/require"
 )
--- a/cmd/s3-authmate/main.go
+++ b/cmd/s3-authmate/main.go
@ -13,13 +13,13 @@ import (
 	"syscall"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/authmate"
+	"github.com/TrueCloudLab/frostfs-s3-gw/authmate"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/frostfs"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/frostfs"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/version"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/version"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/wallet"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/wallet"
-	cid "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/container/id"
+	cid "github.com/TrueCloudLab/frostfs-sdk-go/container/id"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/pool"
+	"github.com/TrueCloudLab/frostfs-sdk-go/pool"
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/credentials"
 	"github.com/aws/aws-sdk-go/aws/session"
--- a/cmd/s3-gw/app.go
+++ b/cmd/s3-gw/app.go
@ -13,20 +13,18 @@ import (
 	"syscall"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/auth"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/auth"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/cache"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/cache"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/handler"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/handler"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/layer"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/layer"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/notifications"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/notifications"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/resolver"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/resolver"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/frostfs"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/frostfs"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/version"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/version"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/wallet"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/wallet"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/xml"
+	"github.com/TrueCloudLab/frostfs-sdk-go/netmap"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/metrics"
+	"github.com/TrueCloudLab/frostfs-sdk-go/pool"
 	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/netmap"
 	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/pool"
 	"github.com/gorilla/mux"
 	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
 	"github.com/spf13/viper"
@ -47,7 +45,7 @@ type (
 		servers []Server
-		metrics        *metrics.AppMetrics
+		metrics        *appMetrics
 		bucketResolver *resolver.BucketResolver
 		services       []*Service
 		settings       *appSettings
@ -60,7 +58,6 @@ type (
 	appSettings struct {
 		logLevel zap.AtomicLevel
 		policies *placementPolicy
 		xmlDecoder *xml.DecoderProvider
 	}
 	Logger struct {
@ -68,6 +65,18 @@ type (
 		lvl    zap.AtomicLevel
 	}
 	appMetrics struct {
 		logger   *zap.Logger
 		provider GateMetricsCollector
 		mu       sync.RWMutex
 		enabled  bool
 	}
 	GateMetricsCollector interface {
 		SetHealth(int32)
 		Unregister()
 	}
 	placementPolicy struct {
 		mu            sync.RWMutex
 		defaultPolicy netmap.PlacementPolicy
@ -156,7 +165,6 @@ func newAppSettings(log *Logger, v *viper.Viper) *appSettings {
 	return &appSettings{
 		logLevel: log.lvl,
 		policies: policies,
 		xmlDecoder: xml.NewDecoderProvider(v.GetBool(cfgKludgeUseDefaultXMLNSForCompleteMultipartUpload)),
 	}
 }
@ -175,7 +183,8 @@ func (a *App) initAPI(ctx context.Context) {
 }
 func (a *App) initMetrics() {
-	a.metrics = metrics.NewAppMetrics(a.log, frostfs.NewPoolStatistic(a.pool), a.cfg.GetBool(cfgPrometheusEnabled))
+	gateMetricsProvider := newGateMetrics(frostfs.NewPoolStatistic(a.pool))
 	a.metrics = newAppMetrics(a.log, gateMetricsProvider, a.cfg.GetBool(cfgPrometheusEnabled))
 }
 func (a *App) initResolver() {
@ -264,7 +273,6 @@ func getPool(ctx context.Context, logger *zap.Logger, cfg *viper.Viper) (*pool.P
 		errorThreshold = defaultPoolErrorThreshold
 	}
 	prm.SetErrorThreshold(errorThreshold)
 	prm.SetLogger(logger)
 	p, err := pool.NewPool(prm)
 	if err != nil {
@ -335,6 +343,47 @@ func (p *placementPolicy) update(defaultPolicy string, regionPolicyFilepath stri
 	return nil
 }
 func newAppMetrics(logger *zap.Logger, provider GateMetricsCollector, enabled bool) *appMetrics {
 	if !enabled {
 		logger.Warn("metrics are disabled")
 	}
 	return &appMetrics{
 		logger:   logger,
 		provider: provider,
 	}
 }
 func (m *appMetrics) SetEnabled(enabled bool) {
 	if !enabled {
 		m.logger.Warn("metrics are disabled")
 	}
 	m.mu.Lock()
 	m.enabled = enabled
 	m.mu.Unlock()
 }
 func (m *appMetrics) SetHealth(status int32) {
 	m.mu.RLock()
 	if !m.enabled {
 		m.mu.RUnlock()
 		return
 	}
 	m.mu.RUnlock()
 	m.provider.SetHealth(status)
 }
 func (m *appMetrics) Shutdown() {
 	m.mu.Lock()
 	if m.enabled {
 		m.provider.SetHealth(0)
 		m.enabled = false
 	}
 	m.provider.Unregister()
 	m.mu.Unlock()
 }
 func remove(list []string, element string) []string {
 	for i, item := range list {
 		if item == element {
@ -372,7 +421,7 @@ func (a *App) Serve(ctx context.Context) {
 	domains := a.cfg.GetStringSlice(cfgListenDomains)
 	a.log.Info("fetch domains, prepare to use API", zap.Strings("domains", domains))
 	router := mux.NewRouter().SkipClean(true).UseEncodedPath()
-	api.Attach(router, domains, a.maxClients, a.api, a.ctr, a.log, a.metrics)
+	api.Attach(router, domains, a.maxClients, a.api, a.ctr, a.log)
 	// Use mux.Router as http.Handler
 	srv := new(http.Server)
@ -422,11 +471,11 @@ func shutdownContext() (context.Context, context.CancelFunc) {
 func (a *App) configReload() {
 	a.log.Info("SIGHUP config reload started")
-	if !a.cfg.IsSet(cmdConfig) && !a.cfg.IsSet(cmdConfigDir) {
+	if !a.cfg.IsSet(cmdConfig) {
 		a.log.Warn("failed to reload config because it's missed")
 		return
 	}
-	if err := readInConfig(a.cfg); err != nil {
+	if err := readConfig(a.cfg); err != nil {
 		a.log.Warn("failed to reload config", zap.Error(err))
 		return
 	}
@ -460,8 +509,6 @@ func (a *App) updateSettings() {
 	if err := a.settings.policies.update(getDefaultPolicyValue(a.cfg), a.cfg.GetString(cfgPolicyRegionMapFile)); err != nil {
 		a.log.Warn("policies won't be updated", zap.Error(err))
 	}
 	a.settings.xmlDecoder.UseDefaultNamespaceForCompleteMultipart(a.cfg.GetBool(cfgKludgeUseDefaultXMLNSForCompleteMultipartUpload))
 }
 func (a *App) startServices() {
@ -471,7 +518,7 @@ func (a *App) startServices() {
 	a.services = append(a.services, pprofService)
 	go pprofService.Start()
-	prometheusService := NewPrometheusService(a.cfg, a.log, a.metrics.Handler())
+	prometheusService := NewPrometheusService(a.cfg, a.log)
 	a.services = append(a.services, prometheusService)
 	go prometheusService.Start()
 }
@ -479,61 +526,37 @@ func (a *App) startServices() {
 func (a *App) initServers(ctx context.Context) {
 	serversInfo := fetchServers(a.cfg)
-	a.servers = make([]Server, 0, len(serversInfo))
+	a.servers = make([]Server, len(serversInfo))
-	for _, serverInfo := range serversInfo {
+	for i, serverInfo := range serversInfo {
-		fields := []zap.Field{
+		a.log.Info("added server",
 			zap.String("address", serverInfo.Address), zap.Bool("tls enabled", serverInfo.TLS.Enabled),
-			zap.String("tls cert", serverInfo.TLS.CertFile), zap.String("tls key", serverInfo.TLS.KeyFile),
+			zap.String("tls cert", serverInfo.TLS.CertFile), zap.String("tls key", serverInfo.TLS.KeyFile))
-		}
+		a.servers[i] = newServer(ctx, serverInfo, a.log)
 		srv, err := newServer(ctx, serverInfo)
 		if err != nil {
 			a.log.Warn("failed to add server", append(fields, zap.Error(err))...)
 			continue
 		}
 		a.servers = append(a.servers, srv)
 		a.log.Info("add server", fields...)
 	}
 	if len(a.servers) == 0 {
 		a.log.Fatal("no healthy servers")
 	}
 }
 func (a *App) updateServers() error {
 	serversInfo := fetchServers(a.cfg)
-	var found bool
+	if len(serversInfo) != len(a.servers) {
-	for _, serverInfo := range serversInfo {
+		return fmt.Errorf("invalid servers configuration: amount mismatch: old '%d', new '%d", len(a.servers), len(serversInfo))
-		index := a.serverIndex(serverInfo.Address)
+	}
-		if index == -1 {
+
-			continue
+	for i, serverInfo := range serversInfo {
 		if serverInfo.Address != a.servers[i].Address() {
 			return fmt.Errorf("invalid servers configuration: addresses mismatch: old '%s', new '%s", a.servers[i].Address(), serverInfo.Address)
 		}
 		if serverInfo.TLS.Enabled {
-			if err := a.servers[index].UpdateCert(serverInfo.TLS.CertFile, serverInfo.TLS.KeyFile); err != nil {
+			if err := a.servers[i].UpdateCert(serverInfo.TLS.CertFile, serverInfo.TLS.KeyFile); err != nil {
 				return fmt.Errorf("failed to update tls certs: %w", err)
 			}
 		}
 		found = true
 	}
 	if !found {
 		return fmt.Errorf("invalid servers configuration: no known server found")
 	}
 	return nil
 }
 func (a *App) serverIndex(address string) int {
 	for i := range a.servers {
 		if a.servers[i].Address() == address {
 			return i
 		}
 	}
 	return -1
 }
 func (a *App) stopServices() {
 	ctx, cancel := shutdownContext()
 	defer cancel()
@ -630,7 +653,6 @@ func (a *App) initHandler() {
 		DefaultMaxAge:      handler.DefaultMaxAge,
 		NotificatorEnabled: a.cfg.GetBool(cfgEnableNATS),
 		CopiesNumber:       handler.DefaultCopiesNumber,
 		XMLDecoder:         a.settings.xmlDecoder,
 	}
 	if a.cfg.IsSet(cfgDefaultMaxAge) {
@ -648,14 +670,6 @@ func (a *App) initHandler() {
 		cfg.CopiesNumber = val
 	}
 	cfg.ResolveZoneList = a.cfg.GetStringSlice(cfgResolveBucketAllow)
 	cfg.IsResolveListAllow = len(cfg.ResolveZoneList) > 0
 	if !cfg.IsResolveListAllow {
 		cfg.ResolveZoneList = a.cfg.GetStringSlice(cfgResolveBucketDeny)
 	}
 	cfg.CompleteMultipartKeepalive = a.cfg.GetDuration(cfgKludgeCompleteMultipartUploadKeepalive)
 	var err error
 	a.api, err = handler.New(a.log, a.obj, a.nc, cfg)
 	if err != nil {
--- a/cmd/s3-gw/app_metrics.go
+++ b/cmd/s3-gw/app_metrics.go
@ -3,12 +3,227 @@ package main
 import (
 	"net/http"
 	"github.com/TrueCloudLab/frostfs-sdk-go/pool"
 	"github.com/prometheus/client_golang/prometheus"
 	"github.com/prometheus/client_golang/prometheus/promhttp"
 	"github.com/spf13/viper"
 	"go.uber.org/zap"
 )
 const (
 	namespace      = "frostfs_s3_gw"
 	stateSubsystem = "state"
 	poolSubsystem  = "pool"
 	methodGetBalance       = "get_balance"
 	methodPutContainer     = "put_container"
 	methodGetContainer     = "get_container"
 	methodListContainer    = "list_container"
 	methodDeleteContainer  = "delete_container"
 	methodGetContainerEacl = "get_container_eacl"
 	methodSetContainerEacl = "set_container_eacl"
 	methodEndpointInfo     = "endpoint_info"
 	methodNetworkInfo      = "network_info"
 	methodPutObject        = "put_object"
 	methodDeleteObject     = "delete_object"
 	methodGetObject        = "get_object"
 	methodHeadObject       = "head_object"
 	methodRangeObject      = "range_object"
 	methodCreateSession    = "create_session"
 )
 type StatisticScraper interface {
 	Statistic() pool.Statistic
 }
 type GateMetrics struct {
 	stateMetrics
 	poolMetricsCollector
 }
 type stateMetrics struct {
 	healthCheck prometheus.Gauge
 }
 type poolMetricsCollector struct {
 	poolStatScraper     StatisticScraper
 	overallErrors       prometheus.Gauge
 	overallNodeErrors   *prometheus.GaugeVec
 	overallNodeRequests *prometheus.GaugeVec
 	currentErrors       *prometheus.GaugeVec
 	requestDuration     *prometheus.GaugeVec
 }
 func newGateMetrics(scraper StatisticScraper) *GateMetrics {
 	stateMetric := newStateMetrics()
 	stateMetric.register()
 	poolMetric := newPoolMetricsCollector(scraper)
 	poolMetric.register()
 	return &GateMetrics{
 		stateMetrics:         *stateMetric,
 		poolMetricsCollector: *poolMetric,
 	}
 }
 func (g *GateMetrics) Unregister() {
 	g.stateMetrics.unregister()
 	prometheus.Unregister(&g.poolMetricsCollector)
 }
 func newStateMetrics() *stateMetrics {
 	return &stateMetrics{
 		healthCheck: prometheus.NewGauge(prometheus.GaugeOpts{
 			Namespace: namespace,
 			Subsystem: stateSubsystem,
 			Name:      "health",
 			Help:      "Current S3 gateway state",
 		}),
 	}
 }
 func (m stateMetrics) register() {
 	prometheus.MustRegister(m.healthCheck)
 }
 func (m stateMetrics) unregister() {
 	prometheus.Unregister(m.healthCheck)
 }
 func (m stateMetrics) SetHealth(s int32) {
 	m.healthCheck.Set(float64(s))
 }
 func newPoolMetricsCollector(scraper StatisticScraper) *poolMetricsCollector {
 	overallErrors := prometheus.NewGauge(
 		prometheus.GaugeOpts{
 			Namespace: namespace,
 			Subsystem: poolSubsystem,
 			Name:      "overall_errors",
 			Help:      "Total number of errors in pool",
 		},
 	)
 	overallNodeErrors := prometheus.NewGaugeVec(
 		prometheus.GaugeOpts{
 			Namespace: namespace,
 			Subsystem: poolSubsystem,
 			Name:      "overall_node_errors",
 			Help:      "Total number of errors for connection in pool",
 		},
 		[]string{
 			"node",
 		},
 	)
 	overallNodeRequests := prometheus.NewGaugeVec(
 		prometheus.GaugeOpts{
 			Namespace: namespace,
 			Subsystem: poolSubsystem,
 			Name:      "overall_node_requests",
 			Help:      "Total number of requests to specific node in pool",
 		},
 		[]string{
 			"node",
 		},
 	)
 	currentErrors := prometheus.NewGaugeVec(
 		prometheus.GaugeOpts{
 			Namespace: namespace,
 			Subsystem: poolSubsystem,
 			Name:      "current_errors",
 			Help:      "Number of errors on current connections that will be reset after the threshold",
 		},
 		[]string{
 			"node",
 		},
 	)
 	requestsDuration := prometheus.NewGaugeVec(
 		prometheus.GaugeOpts{
 			Namespace: namespace,
 			Subsystem: poolSubsystem,
 			Name:      "avg_request_duration",
 			Help:      "Average request duration (in milliseconds) for specific method on node in pool",
 		},
 		[]string{
 			"node",
 			"method",
 		},
 	)
 	return &poolMetricsCollector{
 		poolStatScraper:     scraper,
 		overallErrors:       overallErrors,
 		overallNodeErrors:   overallNodeErrors,
 		overallNodeRequests: overallNodeRequests,
 		currentErrors:       currentErrors,
 		requestDuration:     requestsDuration,
 	}
 }
 func (m *poolMetricsCollector) Collect(ch chan<- prometheus.Metric) {
 	m.updateStatistic()
 	m.overallErrors.Collect(ch)
 	m.overallNodeErrors.Collect(ch)
 	m.overallNodeRequests.Collect(ch)
 	m.currentErrors.Collect(ch)
 	m.requestDuration.Collect(ch)
 }
 func (m *poolMetricsCollector) Describe(descs chan<- *prometheus.Desc) {
 	m.overallErrors.Describe(descs)
 	m.overallNodeErrors.Describe(descs)
 	m.overallNodeRequests.Describe(descs)
 	m.currentErrors.Describe(descs)
 	m.requestDuration.Describe(descs)
 }
 func (m *poolMetricsCollector) register() {
 	prometheus.MustRegister(m)
 }
 func (m *poolMetricsCollector) updateStatistic() {
 	stat := m.poolStatScraper.Statistic()
 	m.overallNodeErrors.Reset()
 	m.overallNodeRequests.Reset()
 	m.currentErrors.Reset()
 	m.requestDuration.Reset()
 	for _, node := range stat.Nodes() {
 		m.overallNodeErrors.WithLabelValues(node.Address()).Set(float64(node.OverallErrors()))
 		m.overallNodeRequests.WithLabelValues(node.Address()).Set(float64(node.Requests()))
 		m.currentErrors.WithLabelValues(node.Address()).Set(float64(node.CurrentErrors()))
 		m.updateRequestsDuration(node)
 	}
 	m.overallErrors.Set(float64(stat.OverallErrors()))
 }
 func (m *poolMetricsCollector) updateRequestsDuration(node pool.NodeStatistic) {
 	m.requestDuration.WithLabelValues(node.Address(), methodGetBalance).Set(float64(node.AverageGetBalance().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodPutContainer).Set(float64(node.AveragePutContainer().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodGetContainer).Set(float64(node.AverageGetContainer().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodListContainer).Set(float64(node.AverageListContainer().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodDeleteContainer).Set(float64(node.AverageDeleteContainer().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodGetContainerEacl).Set(float64(node.AverageGetContainerEACL().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodSetContainerEacl).Set(float64(node.AverageSetContainerEACL().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodEndpointInfo).Set(float64(node.AverageEndpointInfo().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodNetworkInfo).Set(float64(node.AverageNetworkInfo().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodPutObject).Set(float64(node.AveragePutObject().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodDeleteObject).Set(float64(node.AverageDeleteObject().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodGetObject).Set(float64(node.AverageGetObject().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodHeadObject).Set(float64(node.AverageHeadObject().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodRangeObject).Set(float64(node.AverageRangeObject().Milliseconds()))
 	m.requestDuration.WithLabelValues(node.Address(), methodCreateSession).Set(float64(node.AverageCreateSession().Milliseconds()))
 }
 // NewPrometheusService creates a new service for gathering prometheus metrics.
-func NewPrometheusService(v *viper.Viper, log *zap.Logger, handler http.Handler) *Service {
+func NewPrometheusService(v *viper.Viper, log *zap.Logger) *Service {
 	if log == nil {
 		return nil
 	}
@ -16,7 +231,7 @@ func NewPrometheusService(v *viper.Viper, log *zap.Logger, handler http.Handler)
 	return &Service{
 		Server: &http.Server{
 			Addr:    v.GetString(cfgPrometheusAddress),
-			Handler: handler,
+			Handler: promhttp.Handler(),
 		},
 		enabled:     v.GetBool(cfgPrometheusEnabled),
 		serviceType: "Prometheus",
--- a/cmd/s3-gw/app_settings.go
+++ b/cmd/s3-gw/app_settings.go
@ -3,16 +3,15 @@ package main
 import (
 	"fmt"
 	"os"
 	"path"
 	"runtime"
 	"sort"
 	"strconv"
 	"strings"
 	"time"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/api/resolver"
+	"github.com/TrueCloudLab/frostfs-s3-gw/api/resolver"
-	"git.frostfs.info/TrueCloudLab/frostfs-s3-gw/internal/version"
+	"github.com/TrueCloudLab/frostfs-s3-gw/internal/version"
-	"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/pool"
+	"github.com/TrueCloudLab/frostfs-sdk-go/pool"
 	"github.com/spf13/pflag"
 	"github.com/spf13/viper"
 	"go.uber.org/zap"
@ -113,15 +112,10 @@ const ( // Settings.
 	// Application.
 	cfgApplicationBuildTime = "app.build_time"
 	// Kludge.
 	cfgKludgeUseDefaultXMLNSForCompleteMultipartUpload = "kludge.use_default_xmlns_for_complete_multipart"
 	cfgKludgeCompleteMultipartUploadKeepalive          = "kludge.complete_multipart_keepalive"
 	// Command line args.
 	cmdHelp    = "help"
 	cmdVersion = "version"
 	cmdConfig  = "config"
 	cmdConfigDir = "config-dir"
 	cmdPProf   = "pprof"
 	cmdMetrics = "metrics"
@ -134,10 +128,6 @@ const ( // Settings.
 	// List of allowed AccessKeyID prefixes.
 	cfgAllowedAccessKeyIDPrefixes = "allowed_access_key_id_prefixes"
 	// Bucket resolving options.
 	cfgResolveBucketAllow = "resolve_bucket.allow"
 	cfgResolveBucketDeny  = "resolve_bucket.deny"
 	// envPrefix is an environment variables prefix used for configuration.
 	envPrefix = "S3_GW"
 )
@ -224,8 +214,7 @@ func newSettings() *viper.Viper {
 	flags.StringP(cmdWallet, "w", "", `path to the wallet`)
 	flags.String(cmdAddress, "", `address of wallet account`)
-	flags.StringArray(cmdConfig, nil, "config paths")
+	flags.String(cmdConfig, "", "config path")
 	flags.String(cmdConfigDir, "", "config dir path")
 	flags.Duration(cfgHealthcheckTimeout, defaultHealthcheckTimeout, "set timeout to check node health during rebalance")
 	flags.Duration(cfgConnectTimeout, defaultConnectTimeout, "set timeout to connect to FrostFS nodes")
@ -257,10 +246,6 @@ func newSettings() *viper.Viper {
 	v.SetDefault(cfgPProfAddress, "localhost:8085")
 	v.SetDefault(cfgPrometheusAddress, "localhost:8086")
 	// kludge
 	v.SetDefault(cfgKludgeUseDefaultXMLNSForCompleteMultipartUpload, false)
 	v.SetDefault(cfgKludgeCompleteMultipartUploadKeepalive, 10*time.Second)
 	// Bind flags
 	if err := bindFlags(v, flags); err != nil {
 		panic(fmt.Errorf("bind flags: %w", err))
@ -328,9 +313,11 @@ func newSettings() *viper.Viper {
 		os.Exit(0)
 	}
-	if err := readInConfig(v); err != nil {
+	if v.IsSet(cmdConfig) {
 		if err := readConfig(v); err != nil {
 			panic(err)
 		}
 	}
 	return v
 }
@ -345,9 +332,6 @@ func bindFlags(v *viper.Viper, flags *pflag.FlagSet) error {
 	if err := v.BindPFlag(cmdConfig, flags.Lookup(cmdConfig)); err != nil {
 		return err
 	}
 	if err := v.BindPFlag(cmdConfigDir, flags.Lookup(cmdConfigDir)); err != nil {
 		return err
 	}
 	if err := v.BindPFlag(cfgWalletPath, flags.Lookup(cmdWallet)); err != nil {
 		return err
 	}
@ -386,72 +370,17 @@ func bindFlags(v *viper.Viper, flags *pflag.FlagSet) error {
 	return nil
 }
 func readInConfig(v *viper.Viper) error {
 	if v.IsSet(cmdConfig) {
 		if err := readConfig(v); err != nil {
 			return err
 		}
 	}
 	if v.IsSet(cmdConfigDir) {
 		if err := readConfigDir(v); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 func readConfigDir(v *viper.Viper) error {
 	cfgSubConfigDir := v.GetString(cmdConfigDir)
 	entries, err := os.ReadDir(cfgSubConfigDir)
 	if err != nil {
 		return err
 	}
 	for _, entry := range entries {
 		if entry.IsDir() {
 			continue
 		}
 		ext := path.Ext(entry.Name())
 		if ext != ".yaml" && ext != ".yml" {
 			continue
 		}
 		if err = mergeConfig(v, path.Join(cfgSubConfigDir, entry.Name())); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 func readConfig(v *viper.Viper) error {
-	for _, fileName := range v.GetStringSlice(cmdConfig) {
+	cfgFileName := v.GetString(cmdConfig)
-		if err := mergeConfig(v, fileName); err != nil {
+	cfgFile, err := os.Open(cfgFileName)
 			return err
 		}
 	}
 	return nil
 }
 func mergeConfig(v *viper.Viper, fileName string) error {
 	cfgFile, err := os.Open(fileName)
 	if err != nil {
 		return err
 	}
-
+	if err = v.ReadConfig(cfgFile); err != nil {
 	defer func() {
 		if errClose := cfgFile.Close(); errClose != nil {
 			panic(errClose)
 		}
 	}()
 	if err = v.MergeConfig(cfgFile); err != nil {
 		return err
 	}
-	return nil
+	return cfgFile.Close()
 }
 // newLogger constructs a Logger instance for the current application.
--- a/cmd/s3-gw/server.go
+++ b/cmd/s3-gw/server.go
@ -7,6 +7,8 @@ import (
 	"fmt"
 	"net"
 	"sync"
 	"go.uber.org/zap"
 )
 type (
@ -55,11 +57,11 @@ func (s *server) UpdateCert(certFile, keyFile string) error {
 	return s.tlsProvider.UpdateCert(certFile, keyFile)
 }
-func newServer(ctx context.Context, serverInfo ServerInfo) (*server, error) {
+func newServer(ctx context.Context, serverInfo ServerInfo, logger *zap.Logger) *server {
 	var lic net.ListenConfig
 	ln, err := lic.Listen(ctx, "tcp", serverInfo.Address)
 	if err != nil {
-		return nil, fmt.Errorf("could not prepare listener: %w", err)
+		logger.Fatal("could not prepare listener", zap.String("address", serverInfo.Address), zap.Error(err))
 	}
 	tlsProvider := &certProvider{
@ -68,7 +70,7 @@ func newServer(ctx context.Context, serverInfo ServerInfo) (*server, error) {
 	if serverInfo.TLS.Enabled {
 		if err = tlsProvider.UpdateCert(serverInfo.TLS.CertFile, serverInfo.TLS.KeyFile); err != nil {
-			return nil, fmt.Errorf("failed to update cert: %w", err)
+			logger.Fatal("failed to update cert", zap.Error(err))
 		}
 		ln = tls.NewListener(ln, &tls.Config{
@ -80,7 +82,7 @@ func newServer(ctx context.Context, serverInfo ServerInfo) (*server, error) {
 		address:     serverInfo.Address,
 		listener:    ln,
 		tlsProvider: tlsProvider,
-	}, nil
+	}
 }
 func (p *certProvider) GetCertificate(*tls.ClientHelloInfo) (*tls.Certificate, error) {
--- a/config/config.env
+++ b/config/config.env
@ -123,12 +123,3 @@ S3_GW_FROSTFS_SET_COPIES_NUMBER=0
 # List of allowed AccessKeyID prefixes
 # If not set, S3 GW will accept all AccessKeyIDs
 S3_GW_ALLOWED_ACCESS_KEY_ID_PREFIXES=Ck9BHsgKcnwfCTUSFm6pxhoNS4cBqgN2NQ8zVgPjqZDX 3stjWenX15YwYzczMr88gy3CQr4NYFBQ8P7keGzH5QFn
 # List of container NNS zones which are allowed or restricted to resolve with HEAD request
 S3_GW_RESOLVE_BUCKET_ALLOW=container
 # S3_GW_RESOLVE_BUCKET_DENY=
 # Enable using default xml namespace `http://s3.amazonaws.com/doc/2006-03-01/` when parse`CompleteMultipartUpload` xml body.
 S3_GW_KLUDGE_USE_DEFAULT_XMLNS_FOR_COMPLETE_MULTIPART=false
 # Set timeout between whitespace transmissions during CompleteMultipartUpload processing.
 S3_GW_KLUDGE_COMPLETE_MULTIPART_KEEPALIVE=10s
--- a/config/config.yaml
+++ b/config/config.yaml
@ -55,11 +55,11 @@ resolve_order:
 # Metrics
 pprof:
-  enabled: false
+  enabled: true
  address: localhost:8085
 prometheus:
-  enabled: false
+  enabled: true
  address: localhost:8086
 # Timeout to connect to a node
@ -144,14 +144,3 @@ frostfs:
 allowed_access_key_id_prefixes:
  - Ck9BHsgKcnwfCTUSFm6pxhoNS4cBqgN2NQ8zVgPjqZDX
  - 3stjWenX15YwYzczMr88gy3CQr4NYFBQ8P7keGzH5QFn
 resolve_bucket:
  allow:
    - container
  deny:
 kludge:
  # Enable using default xml namespace `http://s3.amazonaws.com/doc/2006-03-01/` when parse`CompleteMultipartUpload` xml body.
  use_default_xmlns_for_complete_multipart: false
  # Set timeout between whitespace transmissions during CompleteMultipartUpload processing.
  complete_multipart_keepalive: 10s
--- a/Show more
+++ b/Show more
Author	SHA1	Message	Date
Denis Kirillov	55c99f6e30	[#192 ] Fix frostfs dependencies Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-01-12 16:47:04 +03:00
Denis Kirillov	749b095acd	[#192 ] Add handling expiration lifecycle Signed-off-by: Denis Kirillov <denis@nspcc.ru>	2023-01-12 16:38:59 +03:00
Denis Kirillov	5bfb8fd291	[#192 ] Add base lifecycle tests Signed-off-by: Denis Kirillov <denis@nspcc.ru>	2023-01-12 16:37:48 +03:00
Denis Kirillov	410db92aa2	[#192 ] Add basic handlers for lifecycles Signed-off-by: Denis Kirillov <denis@nspcc.ru>	2023-01-12 16:37:48 +03:00