diff options
| author | chrislu <chris.lu@gmail.com> | 2024-10-03 09:03:17 -0700 |
|---|---|---|
| committer | chrislu <chris.lu@gmail.com> | 2024-10-03 09:03:17 -0700 |
| commit | a3a8f6217eeb2d35dc02a5a45f8254989ee22147 (patch) | |
| tree | e4cae1f669e02fcbe7457f15bdf4326221b7a095 | |
| parent | 117c3aebda7906433b4b83419af3acbc47f09f4d (diff) | |
| download | seaweedfs-a3a8f6217eeb2d35dc02a5a45f8254989ee22147.tar.xz seaweedfs-a3a8f6217eeb2d35dc02a5a45f8254989ee22147.zip | |
fix
| -rw-r--r-- | weed/s3api/auth_signature_v4.go | 5 | ||||
| -rw-r--r-- | weed/s3api/policy/post-policy.go | 2 |
2 files changed, 3 insertions, 4 deletions
diff --git a/weed/s3api/auth_signature_v4.go b/weed/s3api/auth_signature_v4.go index c8135ef10..c37aa1289 100644 --- a/weed/s3api/auth_signature_v4.go +++ b/weed/s3api/auth_signature_v4.go @@ -149,11 +149,11 @@ func (iam *IdentityAccessManagement) doesSignatureMatch(hashedPayload string, r } if forwardedPrefix := r.Header.Get("X-Forwarded-Prefix"); forwardedPrefix != "" { - // Handling usage of reverse proxy at prefix. Note that it's an undefined behavior for AWS S3 and not supported in MinIO. + // Handling usage of reverse proxy at prefix. // Trying with prefix before main path. // Get canonical request. - canonicalRequest := getCanonicalRequest(extractedSignedHeaders, hashedPayload, queryStr, forwardedPrefix + req.URL.Path, req.Method) + canonicalRequest := getCanonicalRequest(extractedSignedHeaders, hashedPayload, queryStr, forwardedPrefix+req.URL.Path, req.Method) errCode = iam.genAndCompareSignatureV4(canonicalRequest, cred.SecretKey, t, signV4Values) if errCode == s3err.ErrNone { @@ -686,7 +686,6 @@ func extractSignedHeaders(signedHeaders []string, r *http.Request) (http.Header, case "host": // Go http server removes "host" from Request.Header if forwardedHost := r.Header.Get("X-Forwarded-Host"); forwardedHost != "" { - // Trying to use reverse proxy at prefix. Note that it's an undefined behavior for AWS S3 and not supported in MinIO. extractedSignedHeaders.Set(header, forwardedHost) } else if forwardedFor := r.Header.Get("X-Forwarded-For"); forwardedFor != "" { extractedSignedHeaders.Set(header, forwardedFor) diff --git a/weed/s3api/policy/post-policy.go b/weed/s3api/policy/post-policy.go index 64b696ac8..ad3cfc401 100644 --- a/weed/s3api/policy/post-policy.go +++ b/weed/s3api/policy/post-policy.go @@ -315,6 +315,6 @@ func errInvalidArgument(message string) error { StatusCode: http.StatusBadRequest, Code: "InvalidArgument", Message: message, - RequestID: "minio", + RequestID: "client", } } |