Actions
Bug #19027
closedmultisite: EPERM when trying to read SLO objects as system/admin user
% Done:
0%
Source:
Tags:
Backport:
jewel kraken
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
RGWGetObj::read_user_manifest_part() calls verify_object_permission() on each SLO segment, but doesn't take the user's system/admin status into account. So when another zone tries to fetch the object as a system user, the request is denied with 403: Forbidden.
Actions