Actions
Bug #66105
openrgw: only consider subuser perm for its user resources
Status:
Fix Under Review
Priority:
Normal
Assignee:
-
Target version:
-
% Done:
0%
Source:
Tags:
subuser
Backport:
squid reef
Regression:
No
Severity:
3 - minor
Reviewed:
Description
Currently, subusers inherit ACL permissions from the parent account, and the permission check using `op_to_perm()`, performed before considering the resource (bucket/object) ACLs, may deny access even if the resource has authenticated or public read/write permissions. Since ACLs do not support subusers, a subuser's permissions should only be considered for resources owned by their user. For accessing other resources, subusers should only be granted access if public read/write permissions are available.
Updated by Seena Fallah 15 days ago
Updated by Casey Bodley 10 days ago
- Status changed from New to Fix Under Review
- Tags set to subuser
- Pull request ID set to 57539
Actions