67 Commits (4bfc50411c6cd2a85fb91f245f40420005333aab)

Author SHA1 Message Date
Harshavardhana 369a876ebe
fix: handle array policies in JWT claim (#10041) 5 years ago
Klaus Post 216fa57b88
merge nested hash readers (#9582) 5 years ago
Anis Elleuch 4cd6ca02c7
fix: Add missing return in admin requests auth (#9422) 5 years ago
Harshavardhana 37d066b563
fix: deprecate requirement of session token for service accounts (#9320) 5 years ago
kannappanr 1fa65c7f2f
fix: object lock behavior when default lock config is enabled (#9305) 5 years ago
Harshavardhana 43a3778b45
fix: support object-remaining-retention-days policy condition (#9259) 5 years ago
Harshavardhana ab66b23194
fix: allow listBuckets with listBuckets permission (#9253) 5 years ago
Harshavardhana d8af244708
Add numeric/date policy conditions (#9233) 5 years ago
Anis Elleuch 791821d590
sa: Allow empty policy to indicate parent user's policy is inherited (#9185) 5 years ago
Harshavardhana cfc9cfd84a
fix: various optimizations, idiomatic changes (#9179) 5 years ago
Harshavardhana 712e82344c
acl: Support PUT calls with success for 'private' ACL's (#9000) 5 years ago
Harshavardhana bfe8a9bccc
jwt: Simplify JWT parsing (#8802) 5 years ago
Harshavardhana 0cbebf0f57 Rename pkg/{tagging,lifecycle} to pkg/bucket sub-directory (#8892) 5 years ago
Harshavardhana abc1c1070a Add custom policy claim name (#8764) 5 years ago
poornas ca96560d56 Add object retention at the per object (#8528) 5 years ago
poornas 929951fd49 Add support for multiple admins (#8487) 5 years ago
Harshavardhana ee4a6a823d Migrate config to KV data format (#8392) 5 years ago
Harshavardhana 5afb1b6747
Add support for {jwt:sub} substitutions for policies (#8393) 5 years ago
poornas d7060c4c32 Allow logging targets to be configured to receive `minio` (#8347) 5 years ago
Aditya Manthramurthy a0456ce940 LDAP STS API (#8091) 5 years ago
Harshavardhana af36c92cab
With ListBuckets() access-list only buckets the user has access (#8037) 5 years ago
Harshavardhana c43f745449
Ensure that we use constants everywhere (#7845) 6 years ago
Harshavardhana 1af6e8cb72
Add support for session policies in STS APIs (#7747) 6 years ago
Harshavardhana 72929ec05b
Turn off md5sum optionally if content-md5 is not set (#7609) 6 years ago
kannappanr 5ecac91a55
Replace Minio refs in docs with MinIO and links (#7494) 6 years ago
Harshavardhana c3ca954684 Implement AssumeRole API for Minio users (#7267) 6 years ago
Harshavardhana a51781e5cf Use context to fill in more details about error XML (#7232) 6 years ago
Harshavardhana fef5416b3c Support unknown gateway errors and convert at handler layer (#7219) 6 years ago
Harshavardhana 5353edcc38
Support policy variable replacement (#7085) 6 years ago
Harshavardhana e1164103d4 Reject if tokens are missing for temp credentials (#6860) 6 years ago
Harshavardhana dba61867e8 Redirect browser requests returning AccessDenied (#6848) 6 years ago
Harshavardhana 9e3fce441e Audit log claims from token (#6847) 6 years ago
Harshavardhana d6572879a8 Check for STS Action first to allow browser requests (#6796) 6 years ago
Harshavardhana a55a298e00 Make sure to log unhandled errors always (#6784) 6 years ago
Harshavardhana bf414068a3 Parse and return proper errors with x-amz-security-token (#6766) 6 years ago
Harshavardhana 2e81f27d27 Allow all browser calls to honor multi-users (#6645) 6 years ago
Harshavardhana 54ae364def Introduce STS client grants API and OPA policy integration (#6168) 6 years ago
Praveen raj Mani ce9d36d954 Add object compression support (#6292) 6 years ago
Andreas Auernhammer 9fb94e6aa8 ensure authenticated request bodies for Admin-API (#5984) 7 years ago
Andreas Auernhammer 9c8b7306f5 security: fix write-to-RAM DoS vulnerability (#5957) 7 years ago
Andreas Auernhammer c5a00e513c fix DoS vulnerability in request authentication (#5887) 7 years ago
Krishna Srinivas 0ad0969d61 Remove s3:ListObjects policy action to be in sync with AWS-S3 (#5875) 7 years ago
Bala FA 0d52126023 Enhance policy handling to support SSE and WORM (#5790) 7 years ago
kannappanr f8a3fd0c2a
Create logger package and rename errorIf to LogIf (#5678) 7 years ago
Harshavardhana 3145462ad2 Return InvalidDigest when md5 sent by client is invalid (#5654) 7 years ago
kannappanr 380e0ddb57
Remove unwanted errorIf calls (#5621) 7 years ago
Harshavardhana e4f6877c8b Handle incoming proxy requests ip, scheme (#5591) 7 years ago
Andreas Auernhammer 3f09c17bfe fix authentication bypass against Admin-API (#5412) 7 years ago
Harshavardhana 7350543f24 Allow x-amz-content-sha256 to be optional for PutObject() (#5340) 7 years ago
Harshavardhana dae8193bd4 Remove duplicate http constants (#5367) 7 years ago