diff options
| author | 7y-9 <121850020+7y-9@users.noreply.github.com> | 2024-02-19 16:38:05 +0800 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-02-19 00:38:05 -0800 |
| commit | f037c09c11621660ea428f42abe2f18c10c8ec48 (patch) | |
| tree | 60fac97b1d0c0ffe278fc942de5dd9ad353027b4 | |
| parent | 6181aa7594a7f8459910807e581d84adb2ab44c6 (diff) | |
| download | seaweedfs-f037c09c11621660ea428f42abe2f18c10c8ec48.tar.xz seaweedfs-f037c09c11621660ea428f42abe2f18c10c8ec48.zip | |
fix: only admin auth can delete S3 bucket (#5312)
| -rw-r--r-- | weed/s3api/s3api_server.go | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/weed/s3api/s3api_server.go b/weed/s3api/s3api_server.go index 37ae54f1b..7c4918a01 100644 --- a/weed/s3api/s3api_server.go +++ b/weed/s3api/s3api_server.go @@ -278,7 +278,7 @@ func (s3a *S3ApiServer) registerRouter(router *mux.Router) { // PutBucket bucket.Methods("PUT").HandlerFunc(track(s3a.PutBucketHandler, "PUT")) // DeleteBucket - bucket.Methods("DELETE").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteBucketHandler, ACTION_WRITE)), "DELETE")) + bucket.Methods("DELETE").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.DeleteBucketHandler, ACTION_ADMIN)), "DELETE")) // ListObjectsV1 (Legacy) bucket.Methods("GET").HandlerFunc(track(s3a.iam.Auth(s3a.cb.Limit(s3a.ListObjectsV1Handler, ACTION_LIST)), "LIST")) |