forked from TrueCloudLab/policy-engine
[#87] iam: Support s3:PatchObject action
Signed-off-by: Marina Biryukova <m.biryukova@yadro.com>
This commit is contained in:
parent
ed14db3e66
commit
a3bc3099bd
3 changed files with 3 additions and 0 deletions
|
@ -63,6 +63,7 @@ const (
|
||||||
s3ActionPutObjectTagging = "s3:PutObjectTagging"
|
s3ActionPutObjectTagging = "s3:PutObjectTagging"
|
||||||
s3ActionPutObjectVersionACL = "s3:PutObjectVersionAcl"
|
s3ActionPutObjectVersionACL = "s3:PutObjectVersionAcl"
|
||||||
s3ActionPutObjectVersionTagging = "s3:PutObjectVersionTagging"
|
s3ActionPutObjectVersionTagging = "s3:PutObjectVersionTagging"
|
||||||
|
s3ActionPatchObject = "s3:PatchObject"
|
||||||
)
|
)
|
||||||
|
|
||||||
const (
|
const (
|
||||||
|
|
|
@ -60,6 +60,7 @@ var actionToNativeOpMap = map[string][]string{
|
||||||
s3ActionPutObjectTagging: {native.MethodGetContainer, native.MethodHeadObject, native.MethodGetObject, native.MethodPutObject},
|
s3ActionPutObjectTagging: {native.MethodGetContainer, native.MethodHeadObject, native.MethodGetObject, native.MethodPutObject},
|
||||||
s3ActionPutObjectVersionACL: {native.MethodGetContainer, native.MethodGetContainerEACL, native.MethodSetContainerEACL, native.MethodGetObject, native.MethodHeadObject},
|
s3ActionPutObjectVersionACL: {native.MethodGetContainer, native.MethodGetContainerEACL, native.MethodSetContainerEACL, native.MethodGetObject, native.MethodHeadObject},
|
||||||
s3ActionPutObjectVersionTagging: {native.MethodGetContainer, native.MethodHeadObject, native.MethodGetObject, native.MethodPutObject},
|
s3ActionPutObjectVersionTagging: {native.MethodGetContainer, native.MethodHeadObject, native.MethodGetObject, native.MethodPutObject},
|
||||||
|
s3ActionPatchObject: {native.MethodGetContainer, native.MethodGetObject, native.MethodHeadObject, native.MethodPatchObject, native.MethodPutObject, native.MethodRangeObject},
|
||||||
}
|
}
|
||||||
|
|
||||||
var containerNativeOperations = map[string]struct{}{
|
var containerNativeOperations = map[string]struct{}{
|
||||||
|
|
|
@ -32,6 +32,7 @@ var actionToS3OpMap = map[string][]string{
|
||||||
s3ActionPutObjectLegalHold: {s3ActionPutObjectLegalHold},
|
s3ActionPutObjectLegalHold: {s3ActionPutObjectLegalHold},
|
||||||
s3ActionPutObjectRetention: {s3ActionPutObjectRetention},
|
s3ActionPutObjectRetention: {s3ActionPutObjectRetention},
|
||||||
s3ActionPutObjectTagging: {s3ActionPutObjectTagging},
|
s3ActionPutObjectTagging: {s3ActionPutObjectTagging},
|
||||||
|
s3ActionPatchObject: {s3ActionPatchObject},
|
||||||
|
|
||||||
s3ActionListAllMyBuckets: {"s3:ListBuckets"},
|
s3ActionListAllMyBuckets: {"s3:ListBuckets"},
|
||||||
s3ActionListBucket: {"s3:HeadBucket", "s3:GetBucketLocation", "s3:ListObjectsV1", "s3:ListObjectsV2"},
|
s3ActionListBucket: {"s3:HeadBucket", "s3:GetBucketLocation", "s3:ListObjectsV1", "s3:ListObjectsV2"},
|
||||||
|
|
Loading…
Reference in a new issue