Return appropriate error if user,group,policy doesn't exist (#8465)

Fixes https://github.com/minio/mc/issues/2944
master
Harshavardhana 5 years ago committed by kannappanr
parent e31b7cdcd5
commit 1f481c0967
  1. 33
      cmd/iam-etcd-store.go
  2. 36
      cmd/iam-object-store.go

@ -288,6 +288,9 @@ func (ies *IAMEtcdStore) loadUser(user string, isSTS bool, m map[string]auth.Cre
var u UserIdentity var u UserIdentity
err := ies.loadIAMConfig(&u, getUserIdentityPath(user, isSTS)) err := ies.loadIAMConfig(&u, getUserIdentityPath(user, isSTS))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchUser
}
return err return err
} }
@ -337,6 +340,9 @@ func (ies *IAMEtcdStore) loadGroup(group string, m map[string]GroupInfo) error {
var gi GroupInfo var gi GroupInfo
err := ies.loadIAMConfig(&gi, getGroupInfoPath(group)) err := ies.loadIAMConfig(&gi, getGroupInfoPath(group))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchGroup
}
return err return err
} }
m[group] = gi m[group] = gi
@ -370,6 +376,9 @@ func (ies *IAMEtcdStore) loadMappedPolicy(name string, isSTS, isGroup bool, m ma
var p MappedPolicy var p MappedPolicy
err := ies.loadIAMConfig(&p, getMappedPolicyPath(name, isSTS, isGroup)) err := ies.loadIAMConfig(&p, getMappedPolicyPath(name, isSTS, isGroup))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchPolicy
}
return err return err
} }
m[name] = p m[name] = p
@ -486,19 +495,35 @@ func (ies *IAMEtcdStore) saveGroupInfo(name string, gi GroupInfo) error {
} }
func (ies *IAMEtcdStore) deletePolicyDoc(name string) error { func (ies *IAMEtcdStore) deletePolicyDoc(name string) error {
return ies.deleteIAMConfig(getPolicyDocPath(name)) err := ies.deleteIAMConfig(getPolicyDocPath(name))
if err == errConfigNotFound {
err = errNoSuchPolicy
}
return err
} }
func (ies *IAMEtcdStore) deleteMappedPolicy(name string, isSTS, isGroup bool) error { func (ies *IAMEtcdStore) deleteMappedPolicy(name string, isSTS, isGroup bool) error {
return ies.deleteIAMConfig(getMappedPolicyPath(name, isSTS, isGroup)) err := ies.deleteIAMConfig(getMappedPolicyPath(name, isSTS, isGroup))
if err == errConfigNotFound {
err = errNoSuchPolicy
}
return err
} }
func (ies *IAMEtcdStore) deleteUserIdentity(name string, isSTS bool) error { func (ies *IAMEtcdStore) deleteUserIdentity(name string, isSTS bool) error {
return ies.deleteIAMConfig(getUserIdentityPath(name, isSTS)) err := ies.deleteIAMConfig(getUserIdentityPath(name, isSTS))
if err == errConfigNotFound {
err = errNoSuchUser
}
return err
} }
func (ies *IAMEtcdStore) deleteGroupInfo(name string) error { func (ies *IAMEtcdStore) deleteGroupInfo(name string) error {
return ies.deleteIAMConfig(getGroupInfoPath(name)) err := ies.deleteIAMConfig(getGroupInfoPath(name))
if err == errConfigNotFound {
err = errNoSuchGroup
}
return err
} }
func (ies *IAMEtcdStore) watch(sys *IAMSys) { func (ies *IAMEtcdStore) watch(sys *IAMSys) {

@ -244,6 +244,9 @@ func (iamOS *IAMObjectStore) loadPolicyDoc(policy string, m map[string]iampolicy
var p iampolicy.Policy var p iampolicy.Policy
err := iamOS.loadIAMConfig(&p, getPolicyDocPath(policy)) err := iamOS.loadIAMConfig(&p, getPolicyDocPath(policy))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchPolicy
}
return err return err
} }
m[policy] = p m[policy] = p
@ -281,6 +284,9 @@ func (iamOS *IAMObjectStore) loadUser(user string, isSTS bool, m map[string]auth
var u UserIdentity var u UserIdentity
err := iamOS.loadIAMConfig(&u, getUserIdentityPath(user, isSTS)) err := iamOS.loadIAMConfig(&u, getUserIdentityPath(user, isSTS))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchUser
}
return err return err
} }
@ -333,6 +339,9 @@ func (iamOS *IAMObjectStore) loadGroup(group string, m map[string]GroupInfo) err
var g GroupInfo var g GroupInfo
err := iamOS.loadIAMConfig(&g, getGroupInfoPath(group)) err := iamOS.loadIAMConfig(&g, getGroupInfoPath(group))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchGroup
}
return err return err
} }
m[group] = g m[group] = g
@ -372,6 +381,9 @@ func (iamOS *IAMObjectStore) loadMappedPolicy(name string, isSTS, isGroup bool,
var p MappedPolicy var p MappedPolicy
err := iamOS.loadIAMConfig(&p, getMappedPolicyPath(name, isSTS, isGroup)) err := iamOS.loadIAMConfig(&p, getMappedPolicyPath(name, isSTS, isGroup))
if err != nil { if err != nil {
if err == errConfigNotFound {
return errNoSuchPolicy
}
return err return err
} }
m[name] = p m[name] = p
@ -497,19 +509,35 @@ func (iamOS *IAMObjectStore) saveGroupInfo(name string, gi GroupInfo) error {
} }
func (iamOS *IAMObjectStore) deletePolicyDoc(name string) error { func (iamOS *IAMObjectStore) deletePolicyDoc(name string) error {
return iamOS.deleteIAMConfig(getPolicyDocPath(name)) err := iamOS.deleteIAMConfig(getPolicyDocPath(name))
if err == errConfigNotFound {
err = errNoSuchPolicy
}
return err
} }
func (iamOS *IAMObjectStore) deleteMappedPolicy(name string, isSTS, isGroup bool) error { func (iamOS *IAMObjectStore) deleteMappedPolicy(name string, isSTS, isGroup bool) error {
return iamOS.deleteIAMConfig(getMappedPolicyPath(name, isSTS, isGroup)) err := iamOS.deleteIAMConfig(getMappedPolicyPath(name, isSTS, isGroup))
if err == errConfigNotFound {
err = errNoSuchPolicy
}
return err
} }
func (iamOS *IAMObjectStore) deleteUserIdentity(name string, isSTS bool) error { func (iamOS *IAMObjectStore) deleteUserIdentity(name string, isSTS bool) error {
return iamOS.deleteIAMConfig(getUserIdentityPath(name, isSTS)) err := iamOS.deleteIAMConfig(getUserIdentityPath(name, isSTS))
if err == errConfigNotFound {
err = errNoSuchUser
}
return err
} }
func (iamOS *IAMObjectStore) deleteGroupInfo(name string) error { func (iamOS *IAMObjectStore) deleteGroupInfo(name string) error {
return iamOS.deleteIAMConfig(getGroupInfoPath(name)) err := iamOS.deleteIAMConfig(getGroupInfoPath(name))
if err == errConfigNotFound {
err = errNoSuchGroup
}
return err
} }
// helper type for listIAMConfigItems // helper type for listIAMConfigItems

Loading…
Cancel
Save