aboutsummaryrefslogtreecommitdiff
path: root/weed/s3api/s3_presigned_url_iam.go
diff options
context:
space:
mode:
Diffstat (limited to 'weed/s3api/s3_presigned_url_iam.go')
-rw-r--r--weed/s3api/s3_presigned_url_iam.go4
1 files changed, 2 insertions, 2 deletions
diff --git a/weed/s3api/s3_presigned_url_iam.go b/weed/s3api/s3_presigned_url_iam.go
index 86b07668b..a9f49f02a 100644
--- a/weed/s3api/s3_presigned_url_iam.go
+++ b/weed/s3api/s3_presigned_url_iam.go
@@ -98,7 +98,7 @@ func (iam *IdentityAccessManagement) ValidatePresignedURLWithIAM(r *http.Request
parts := strings.Split(roleName, "/")
roleNameOnly = parts[len(parts)-1]
}
- principalArn = fmt.Sprintf("arn:seaweed:sts::assumed-role/%s/%s", roleNameOnly, sessionName)
+ principalArn = fmt.Sprintf("arn:aws:sts::assumed-role/%s/%s", roleNameOnly, sessionName)
}
// Create IAM identity for authorization using extracted information
@@ -130,7 +130,7 @@ func (pm *S3PresignedURLManager) GeneratePresignedURLWithIAM(ctx context.Context
// Validate session token and get identity
// Use a proper ARN format for the principal
- principalArn := fmt.Sprintf("arn:seaweed:sts::assumed-role/PresignedUser/presigned-session")
+ principalArn := fmt.Sprintf("arn:aws:sts::assumed-role/PresignedUser/presigned-session")
iamIdentity := &IAMIdentity{
SessionToken: req.SessionToken,
Principal: principalArn,
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-20 23:36:51 +0000