mirror
/
s3proxy
kopia lustrzana https://github.com/gaul/s3proxy
1
0
Forkuj 0
Kod Zgłoszenia Packages Projekty Wydania Wiki Aktywność

allow invalid auth header for presigned urls

pull/680/head
Gregory Leleytner 2024-08-30 09:17:25 +00:00
rodzic 61adb31c9d
commit a3fc03c0e4
1 zmienionych plików z 23 dodań i 8 usunięć
Pokaż statystyki Ściągnij plik aktualizacji Ściągnij plik porównania Expand all files Collapse all files

31
src/main/java/org/gaul/s3proxy/S3ProxyHandler.java
Wyświetl plik

@ -366,13 +366,27 @@ public class S3ProxyHandler {
BlobStore blobStore;
String requestIdentity = null;
String headerAuthorization = request.getHeader(
HttpHeaders.AUTHORIZATION);
S3AuthorizationHeader authHeader = null;
boolean presignedUrl = false;
boolean headerAuth = true;
if (!anonymousIdentity) {
//try login with auth header
String headerAuthorization = request.getHeader(HttpHeaders.AUTHORIZATION);
if (Strings.isNullOrEmpty(headerAuthorization)) {
headerAuth = false;
} else {
try {
authHeader = new S3AuthorizationHeader(headerAuthorization);
//whether v2 or v4 (normal header and query)
} catch (IllegalArgumentException iae) {
headerAuth = false;
}
}
//try login as pre signed url if header failed
if (!headerAuth) {
String algorithm = request.getParameter("X-Amz-Algorithm");
if (algorithm == null) { //v2 query
String identity = request.getParameter("AWSAccessKeyId");
@ -402,14 +416,15 @@ public class S3ProxyHandler {
throw new IllegalArgumentException("unknown algorithm: " +
algorithm);
}
try {
authHeader = new S3AuthorizationHeader(headerAuthorization);
//whether v2 or v4 (normal header and query)
} catch (IllegalArgumentException iae) {
throw new S3Exception(S3ErrorCode.INVALID_ARGUMENT, iae);
}
}
try {
authHeader = new S3AuthorizationHeader(headerAuthorization);
//whether v2 or v4 (normal header and query)
} catch (IllegalArgumentException iae) {
throw new S3Exception(S3ErrorCode.INVALID_ARGUMENT, iae);
}
requestIdentity = authHeader.getIdentity();
}