don't modify postobject request before validating policy
All checks were successful
ci/woodpecker/pr/debug Pipeline was successful
All checks were successful
ci/woodpecker/pr/debug Pipeline was successful
This commit is contained in:
parent
3a87bd1370
commit
f190032589
1 changed files with 7 additions and 15 deletions
|
@ -71,21 +71,11 @@ pub async fn handle_post_object(
|
||||||
}
|
}
|
||||||
|
|
||||||
if let Ok(content) = HeaderValue::from_str(&field.text().await?) {
|
if let Ok(content) = HeaderValue::from_str(&field.text().await?) {
|
||||||
match name.as_str() {
|
if params.insert(&name, content).is_some() {
|
||||||
"tag" => (/* tag need to be reencoded, but we don't support them yet anyway */),
|
return Err(Error::bad_request(format!(
|
||||||
"acl" => {
|
"Field '{}' provided more than once",
|
||||||
if params.insert("x-amz-acl", content).is_some() {
|
name
|
||||||
return Err(Error::bad_request("Field 'acl' provided more than once"));
|
)));
|
||||||
}
|
|
||||||
}
|
|
||||||
_ => {
|
|
||||||
if params.insert(&name, content).is_some() {
|
|
||||||
return Err(Error::bad_request(format!(
|
|
||||||
"Field '{}' provided more than once",
|
|
||||||
name
|
|
||||||
)));
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
};
|
};
|
||||||
|
@ -222,6 +212,8 @@ pub async fn handle_post_object(
|
||||||
)));
|
)));
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// if we ever start supporting ACLs, we likely want to map "acl" to x-amz-acl" somewhere
|
||||||
|
// arround here to make sure the rest of the machinery takes our acl into account.
|
||||||
let headers = get_headers(¶ms)?;
|
let headers = get_headers(¶ms)?;
|
||||||
|
|
||||||
let expected_checksums = ExpectedChecksums {
|
let expected_checksums = ExpectedChecksums {
|
||||||
|
|
Loading…
Reference in a new issue