104 commits

Author	SHA1	Message	Date
Roman Loginov	04b8fc2b5f	[#562] Empty default value for TLS termination header param ... If the service is accessed not through a proxy and the default value of the parameter with the header key is not empty, then the system administrator does not control disabling TLS verification in any way, because the client can simply add a known header, thereby skipping the verification. Therefore, the default value of the header parameter is made empty. If it is empty, then TLS verification cannot be disabled in any way. Thus, the system administrator will be able to control the enabling/disabling of TLS. Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2024-12-13 11:12:58 +00:00
Roman Loginov	128939c01e	[#562] Add tests for form encryption params ... Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2024-12-11 16:09:43 +03:00
Roman Loginov	4a4ce00994	[#562] Support TLS termination header for SSE-C ... The TLS termination header added for determining whether TLS needs to be checked. If the system requests come through a proxy server and TLS can terminate at the proxy level, you should use this header to disable TLS verification at SSE-C. Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2024-12-11 16:09:43 +03:00
Marina Biryukova	f215d200e8	[#559] Remove multipart objects using tombstones ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2024-12-04 11:03:01 +03:00
Pavel Pogodaev	51322cccdf	[#502] Add Dropped logs (by sampling) metric ... Signed-off-by: Pavel Pogodaev <p.pogodaev@yadro.com>	2024-12-03 12:16:56 +00:00
Roman Loginov	368c7d2acd	[#549] Add tracing attributes ... Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2024-11-18 11:55:31 +00:00
Alex Vanin	9e64304499	[#521] Use handler to register dial events ... While frostfs-node uses dial handler to udpate metric value, gateway starts with simple event logging. Signed-off-by: Alex Vanin <a.vanin@yadro.com>	2024-10-29 15:55:27 +03:00
Alex Vanin	94504e9746	[#521] Use source dialer for gRPC connection to storage ... Signed-off-by: Alex Vanin <a.vanin@yadro.com>	2024-10-29 15:55:27 +03:00
Denis Kirillov	b78e55e101	[#509] Support custom AWS credentials ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-10-23 15:01:31 +03:00
Pavel Pogodaev	99f273f9af	[#461] Configure logger sampling policy ... Signed-off-by: Pavel Pogodaev <p.pogodaev@yadro.com>	2024-09-26 10:34:44 +03:00
Aleksey Savaitan	34c1426b9f	[#484] Add root ca cert for telemetry configuration ... Signed-off-by: Aleksey Savaitan <a.savaitan@yadro.com>	2024-09-19 11:07:13 +00:00
Marina Biryukova	d0e4d55772	[#460] Add network info cache ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2024-09-13 09:56:24 +00:00
Nikita Zinkevich	575ab4d294	[#369] Enhanced http requests logging ... Signed-off-by: Nikita Zinkevich <n.zinkevich@yadro.com>	2024-09-11 15:25:09 +03:00
Denis Kirillov	136b5521fe	[#475] Support graceful_close_on_switch_timeout param ... This allows in-flight requests finish during rebalance Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-08-29 13:22:08 +00:00
Roman Loginov	bf00fa6aa9	[#449] Add support headers for vhs and servername ... Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2024-08-23 08:35:05 +00:00
Roman Loginov	534ae7f0f1	[#446] Add support virtual-hosted-style ... Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2024-08-23 08:35:05 +00:00
Marina Biryukova	481520705a	[#42] Support expiration lifecycle ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2024-08-21 10:38:35 +03:00
Marina Biryukova	971006a28c	[#422] Support separate container for CORS ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2024-07-23 12:33:29 +00:00
Denis Kirillov	77f8bdac58	[#372] Drop kludge.acl_enabled flag ... Now only APE container can be created using s3-gw Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-07-01 16:26:19 +03:00
Denis Kirillov	9432782ce6	[#401] Drop notifications ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-06-25 15:49:37 +03:00
Denis Kirillov	2b04fcb5ec	[#406] Remove control api ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-06-21 06:36:56 +00:00
Denis Kirillov	bb81afc14a	[#398] Support retryer ... Add two strategy for PutBucketSettings request retryer: * exponential backoff (increasing up to `max_backoff` delays with jitter) * constant backoff (always the same `max_backoff` delay between requests) Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-06-06 13:02:17 +00:00
Marina Biryukova	45f77de8c8	[#371] Add custom Source IP header configuration ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2024-04-22 07:42:45 +00:00
Denis Kirillov	fec3b3f31e	[#269] Add frostfsid cache configuration ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-04-17 12:11:23 +03:00
Pavel Pogodaev	bfcde09f07	[#291] server auto re-binding ... Signed-off-by: Pavel Pogodaev <p.pogodaev@yadro.com>	2024-03-27 14:28:50 +03:00
Denis Kirillov	56b50f2075	[#306] Remove flag to disable policy contract ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-02-28 17:50:08 +03:00
Denis Kirillov	c868af8a62	[#306] Add flag to enable old ACL bucket creation ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-02-28 17:50:08 +03:00
Denis Kirillov	37be8851b3	[#306] Simplify namespaces configuration ... Resolve ns alias at the beginning of the request just once. Keep in ns map only one default ns key. Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-02-28 17:50:08 +03:00
Artem Tataurov	bd8d2d00ba	[#313] logger: Fix logging level changing for journald ... Signed-off-by: Artem Tataurov <a.tataurov@yadro.com>	2024-02-16 17:44:16 +03:00
Denis Kirillov	924e87face	[#305] Support checking if accessbox was removed ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-02-09 09:41:48 +03:00
Denis Kirillov	6e8960b2ab	[#165] Add list session cache ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2024-02-02 16:09:48 +03:00
Pavel Pogodaev	4804904d9d	[#298] journald update version ... We want to have less useless fields in logs Signed-off-by: Pavel Pogodaev <p.pogodaev@yadro.com>	2024-01-29 12:49:22 +00:00
Denis Kirillov	899213b3f3	[#287] Support proxy for frostfsid and policy contracts ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-22 15:45:10 +03:00
Denis Kirillov	5698d5844e	[#283] Support frostfsid groups in policy request checking ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-21 14:21:36 +03:00
Denis Kirillov	0850d21ff3	[#266] Move trimming namespaces name into fetch function ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-14 16:12:10 +03:00
Denis Kirillov	9272f4e108	[#259] Support contract based policies ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-11 10:01:46 +03:00
Denis Kirillov	be6a37ada5	[#262] Support configuring max tree request attempts ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com> Signed-off-by: Alex Vanin <a.vanin@yadro.com>	2023-12-07 16:41:21 +03:00
Denis Kirillov	43abf58068	[#257] Support flag to deny access if policy rules not found ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-06 17:47:58 +03:00
Denis Kirillov	473239bf36	[#257] Add policy checker ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-06 17:47:51 +03:00
Marina Biryukova	93cf7c462b	[#271] Add namespace label to billing metrics ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2023-12-04 14:54:40 +03:00
Denis Kirillov	6c5f9b2764	[#266] Fix namespace config initialization ... Don't use nil Namespaces map in case when file isn't provided or invalid Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-04 09:40:47 +00:00
Denis Kirillov	c7a65bd075	[#258] Add control service ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-12-01 14:17:06 +03:00
Denis Kirillov	28c6bb4cb8	[#266] Support per namespace placement policies configuration ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-11-28 16:12:42 +03:00
Denis Kirillov	055cc6a22a	[#260] Use namespace as domain when resolve bucket ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-11-23 11:00:11 +03:00
Denis Kirillov	6304d7bfda	[#260] Support frostfsid validation ... Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-11-23 11:00:11 +03:00
Roman Loginov	406075aebb	[#236] Add support zapjournald logger configuration ... Signed-off-by: Roman Loginov <r.loginov@yadro.com>	2023-11-13 16:31:11 +03:00
Marina Biryukova	890a8ed237	[#227] Add versionID header after complete multipart ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2023-10-31 14:07:08 +00:00
Denis Kirillov	122af0b5a7	[#220] Support configuring web server timeout params ... Set IdleTimeout and ReadHeaderTimeout to `30s`. Signed-off-by: Denis Kirillov <d.kirillov@yadro.com>	2023-10-31 13:48:08 +00:00
Marina Biryukova	25bb581fee	[#205] Add md5 checksum in header ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2023-10-25 11:04:19 +03:00
Marina Biryukova	298662df9d	[#221] Expand xmlns field ignore ... Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>	2023-10-13 16:21:13 +03:00