TrueCloudLab/frostfs-s3-gw
18
3
Fork 20
Code Issues 28 Pull requests 7 Projects Releases 22 Packages Activity Actions
frostfs-s3-gw/cmd
History
Roman Loginov 04b8fc2b5f
All checks were successful
/ Vulncheck (push) Successful in 1m28s
Details
/ Builds (push) Successful in 2m14s
Details
/ Lint (push) Successful in 3m59s
Details
/ Tests (push) Successful in 3m17s
Details
[#562] Empty default value for TLS termination header param 
If the service is accessed not through a proxy and the
default value of the parameter with the header key is
not empty, then the system administrator does not
control disabling TLS verification in any way, because
the client can simply add a known header, thereby
skipping the verification. Therefore, the default value
of the header parameter is made empty. If it is empty,
then TLS verification cannot be disabled in any way.
Thus, the system administrator will be able to control
the enabling/disabling of TLS.

Signed-off-by: Roman Loginov <r.loginov@yadro.com>
2024-12-13 11:12:58 +00:00
..
s3-authmate [#339] Fix logging in authmate [pre]sign command 2024-12-10 15:04:56 +03:00
s3-gw [#562] Empty default value for TLS termination header param 2024-12-13 11:12:58 +00:00
s3-playback [#369] Request reproducer 2024-09-11 15:25:09 +03:00