Project

General

Profile

Bug #22439

The return value of auth v2/v4 in RGW is wrong when Expires/X-Amz-Expires missing

Added by 芽亮 豆 almost 2 years ago. Updated over 1 year ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Target version:
-
Start date:
12/14/2017
Due date:
% Done:

0%

Source:
Tags:
RGW
Backport:
luminous
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature:

Description

The return value of auth v2/v4 in RGW is different from that in AWS:
  • When 'Expires' is missing in auth v2 query string request, AWS returns AccessDenied while RGW returns SignatureDoesNotMatch;
  • When 'X-Amz-Expires' is missing in auth v4 query string request, AWS returns AuthorizationQueryParametersError while RGW returns RequestTimeTooSkewed;

Related issues

Copied to rgw - Backport #23252: luminous: The return value of auth v2/v4 in RGW is wrong when Expires/X-Amz-Expires missing Resolved

History

#1 Updated by Radoslaw Zarzynski almost 2 years ago

  • Status changed from New to In Progress

#2 Updated by Matt Benjamin almost 2 years ago

  • Backport set to luminous

#3 Updated by Casey Bodley over 1 year ago

  • Status changed from In Progress to Pending Backport

#4 Updated by Nathan Cutler over 1 year ago

  • Copied to Backport #23252: luminous: The return value of auth v2/v4 in RGW is wrong when Expires/X-Amz-Expires missing added

#5 Updated by Nathan Cutler over 1 year ago

  • Status changed from Pending Backport to Resolved

Also available in: Atom PDF