fmorg-git opened a new pull request, #9971: URL: https://github.com/apache/ozone/pull/9971
Please describe your PR in detail: * Currently, there are no acl checks in the S3 ListMultipartUploads implementation. This affects STS because, for example, if a token is scoped to have only PutObject access, the token can also call ListMultipartUploads because there are no acl checks. This ticket adds the acl checks for STS requests because it is unclear how many users would be affected if acl checks were added to the base S3 apis. ## What is the link to the Apache JIRA https://issues.apache.org/jira/browse/HDDS-14894 ## How was this patch tested? unit tests, smoke tests -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
