From d71b1d25f82990b91b3cfb1576f30319f9a96952 Mon Sep 17 00:00:00 2001
From: Harshavardhana <harsha@minio.io>
Date: Thu, 1 Mar 2018 16:15:53 -0800
Subject: [PATCH] Make sure to filter out internal metadata (#5601)

Currently we reply back `X-Minio-Internal` values
back to the client for an encrypted object, we should
filter these out and only reply AWS compatible headers.
---
 cmd/api-headers.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/cmd/api-headers.go b/cmd/api-headers.go
index 269296644..cd678e2dd 100644
--- a/cmd/api-headers.go
+++ b/cmd/api-headers.go
@@ -89,6 +89,11 @@ func setObjectHeaders(w http.ResponseWriter, objInfo ObjectInfo, contentRange *h
 
 	// Set all other user defined metadata.
 	for k, v := range objInfo.UserDefined {
+		if hasPrefix(k, ReservedMetadataPrefix) {
+			// Do not need to send any internal metadata
+			// values to client.
+			continue
+		}
 		w.Header().Set(k, v)
 	}