Bug #22439: The return value of auth v2/v4 in RGW is wrong when Expires/X-Amz-Expires missing - rgw - Ceph

Actions

Bug #22439

closed

The return value of auth v2/v4 in RGW is wrong when Expires/X-Amz-Expires missing

Added by 芽亮豆 over 6 years ago. Updated about 6 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

-

Target version:

-

% Done:

0%

Source:

Tags:

RGW

Backport:

luminous

Regression:

No

Severity:

3 - minor

Reviewed:

Affected Versions:

ceph-qa-suite:

Pull request ID:

Crash signature (v1):

Crash signature (v2):

Description

The return value of auth v2/v4 in RGW is different from that in AWS:

When 'Expires' is missing in auth v2 query string request, AWS returns AccessDenied while RGW returns SignatureDoesNotMatch;
When 'X-Amz-Expires' is missing in auth v4 query string request, AWS returns AuthorizationQueryParametersError while RGW returns RequestTimeTooSkewed;

Related issues 1 (0 open — 1 closed)

Actions

#1

Updated by Radoslaw Zarzynski over 6 years ago

Status changed from New to In Progress

https://github.com/ceph/ceph/pull/19310

Actions

#2

Updated by Matt Benjamin over 6 years ago

Backport set to luminous

Actions

#3

Updated by Casey Bodley about 6 years ago

Status changed from In Progress to Pending Backport

Actions

#4

Updated by Nathan Cutler about 6 years ago

Copied to Backport #23252: luminous: The return value of auth v2/v4 in RGW is wrong when Expires/X-Amz-Expires missing added

Actions

#5

Updated by Nathan Cutler about 6 years ago

Status changed from Pending Backport to Resolved

Actions

Also available in: Atom PDF