APE access to receive specific object from specific container #1101
Labels
No Label
P0
P1
P2
P3
badger
frostfs-adm
frostfs-cli
frostfs-ir
frostfs-lens
frostfs-node
good first issue
triage
Infrastructure
blocked
bug
config
discussion
documentation
duplicate
enhancement
go
help wanted
internal
invalid
kludge
observability
perfomance
question
refactoring
wontfix
No Milestone
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: TrueCloudLab/frostfs-node#1101
Loading…
Reference in New Issue
There is no content yet.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may exist for a short time before cleaning up, in most cases it CANNOT be undone. Continue?
I got this APE rule set by S3 Gateway
To access
cat.jpg
, S3 Gateway uses tree service and object service (head / get object). Requests contain bearer token withimpersonate
flag, signed by0212f413f56c7da16102f721b4e3c7302efb35013e2291e28a1b58ce28ec1117c4
public key.Expected Behavior
Access is granted.
Current Behavior
Access is denied due to several issues:
FilePath
attribute is not passed to request context.Possible Solution
Steps to Reproduce (for bugs)
Regression
No
Your Environment
frostfs-node v0.38.5
frostfs-s3-gw v0.29.0-rc.7
/cc @fyrchik, @dkirillov
#1090