[#680] Move policy engine converter to s3-gw

Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>
2025-04-04 18:04:58 +03:00 · 2025-04-04 18:04:58 +03:00 · 0ba6989197
commit 0ba6989197
parent e788bb6ec9
21 changed files with 4325 additions and 50 deletions
--- a/api/handler/put.go
+++ b/api/handler/put.go
@ -860,7 +860,7 @@ func (h *handler) createBucketHandlerPolicy(w http.ResponseWriter, r *http.Reque
 		zap.Stringer("container_id", bktInfo.CID), logs.TagField(logs.TagExternalStorage))

 	chains := bucketCannedACLToAPERules(cannedACL, reqInfo, bktInfo.CID)
-	if err = h.ape.SaveACLChains(bktInfo.CID.EncodeToString(), chains); err != nil {
+	if err = h.policyEngine.APE.SaveACLChains(bktInfo.CID.EncodeToString(), chains); err != nil {
 		cleanErr := h.cleanupBucketCreation(ctx, reqInfo, bktInfo, boxData, chains)
 		h.logAndSendError(ctx, w, "failed to add morph rule chain", reqInfo, err, zap.NamedError("cleanup_error", cleanErr))
 		return
@ -913,7 +913,7 @@ func (h *handler) cleanupBucketCreation(ctx context.Context, reqInfo *middleware
 		chainIDs[i] = c.ID
 	}

-	if err := h.ape.DeleteBucketPolicy(reqInfo.Namespace, bktInfo.CID, chainIDs); err != nil {
+	if err := h.policyEngine.APE.DeleteBucketPolicy(reqInfo.Namespace, bktInfo.CID, chainIDs); err != nil {
 		return fmt.Errorf("delete bucket acl policy: %w", err)
 	}