38 Commits (ea665287393cf02bd31cd63621c91671f09f8c70)

Author SHA1 Message Date
Harshavardhana e1164103d4 Reject if tokens are missing for temp credentials (#6860) 6 years ago
Harshavardhana dba61867e8 Redirect browser requests returning AccessDenied (#6848) 6 years ago
Harshavardhana 9e3fce441e Audit log claims from token (#6847) 6 years ago
Harshavardhana d6572879a8 Check for STS Action first to allow browser requests (#6796) 6 years ago
Harshavardhana a55a298e00 Make sure to log unhandled errors always (#6784) 6 years ago
Harshavardhana bf414068a3 Parse and return proper errors with x-amz-security-token (#6766) 6 years ago
Harshavardhana 2e81f27d27 Allow all browser calls to honor multi-users (#6645) 6 years ago
Harshavardhana 54ae364def Introduce STS client grants API and OPA policy integration (#6168) 6 years ago
Praveen raj Mani ce9d36d954 Add object compression support (#6292) 6 years ago
Andreas Auernhammer 9fb94e6aa8 ensure authenticated request bodies for Admin-API (#5984) 7 years ago
Andreas Auernhammer 9c8b7306f5 security: fix write-to-RAM DoS vulnerability (#5957) 7 years ago
Andreas Auernhammer c5a00e513c fix DoS vulnerability in request authentication (#5887) 7 years ago
Krishna Srinivas 0ad0969d61 Remove s3:ListObjects policy action to be in sync with AWS-S3 (#5875) 7 years ago
Bala FA 0d52126023 Enhance policy handling to support SSE and WORM (#5790) 7 years ago
kannappanr f8a3fd0c2a
Create logger package and rename errorIf to LogIf (#5678) 7 years ago
Harshavardhana 3145462ad2 Return InvalidDigest when md5 sent by client is invalid (#5654) 7 years ago
kannappanr 380e0ddb57
Remove unwanted errorIf calls (#5621) 7 years ago
Harshavardhana e4f6877c8b Handle incoming proxy requests ip, scheme (#5591) 7 years ago
Andreas Auernhammer 3f09c17bfe fix authentication bypass against Admin-API (#5412) 7 years ago
Harshavardhana 7350543f24 Allow x-amz-content-sha256 to be optional for PutObject() (#5340) 7 years ago
Harshavardhana dae8193bd4 Remove duplicate http constants (#5367) 7 years ago
Krishna Srinivas e7a724de0d Virtual host style S3 requests (#5095) 7 years ago
Aaron Walker 5db533c024 bucket-policy: Add IPAddress/NotIPAddress conditions support (#4736) 7 years ago
Harshavardhana 458f22f37c log: Fix printing of signature error request headers. (#4444) 8 years ago
Krishna Srinivas a4209c10ea signature-v4: Use sha256("") for calculating canonical request (#4064) 8 years ago
Harshavardhana b62cd8ed84 sign/streaming: Content-Encoding is not set in newer aws-java-sdks (#3986) 8 years ago
Harshavardhana 6b68c0170f For streaming signature do not save content-encoding in PutObject() (#3776) 8 years ago
Krishnan Parthasarathi b408d0e87d Add aws:Referer condition key support. (#3641) 8 years ago
Harshavardhana 62f8343879 Add constants for commonly used values. (#3588) 8 years ago
Harshavardhana 926c75d0b5 api: Set appropriate content-type for success/error responses. (#3537) 8 years ago
Bala FA ee0172dfe4 Have simpler JWT authentication. (#3501) 8 years ago
Bala FA bef0a50bc1 Cleanup and fixes (#3273) 8 years ago
Harshavardhana a8ab02a73a v4/presign: Fix presign requests when there are more signed headers. (#3222) 8 years ago
Krishna Srinivas 61a18ed48f sha256: Verify sha256 along with md5sum, signature is verified on the request early. (#2813) 8 years ago
Harshavardhana 5885ffc8ae signature: Add legacy signature v2 support transparently. (#2811) 8 years ago
Harshavardhana 64083b9227 signature: Region changes should be handled just like AWS. (#2805) 8 years ago
Mohit Agarwal 418921de89 minor cleanup 8 years ago
Harshavardhana bccf549463 server: Move all the top level files into cmd folder. (#2490) 8 years ago
Harshavardhana 7e46055a15 api/handlers: Implement streaming signature v4 support. (#2370) 8 years ago
Harshavardhana 86d31e99d5 api: use checkAuth now at PutBucket, DeleteBucket handlers. (#2225) 8 years ago
Harshavardhana aeac902747 API: ListBuckets doesn't have a body, we should never read the body. (#2218) 8 years ago
Harshavardhana 8a028a9efb handler/PUT: Handle signature verification through a custom reader. (#2066) 8 years ago
Krishna Srinivas eb5f782c74 object-handler: skip sha256 calculation if x-amz-content-sha256=="UNSIGNED-PAYLOAD" (#2038) 9 years ago
Harshavardhana 9472299308 logging: Log only for unhandled errors, remove all the debug logging. (#1652) 9 years ago
karthic rao 26e2c4bf4d Replacing fastsha256 with crypto/sha256 package from golang standard package (#1584) 9 years ago
Harshavardhana 4e34e03dd4 xl/fs: Split object layer into interface. (#1415) 9 years ago
Harshavardhana b182e94acc signature: Handle presigned payload if set. 9 years ago
Harshavardhana a6a4e7e297 signature: No need to validate region for getBucketLocation and listBuckets. 9 years ago
Harshavardhana 02ad48466d error: Signature errors should be returned with APIErrorCode. 9 years ago
Harshavardhana 9dca46e156 signature: Use a layered approach for signature verification. 9 years ago