On Thu, Sep 8, 2016 at 7:21 PM, Pritha Srivastava <prsrivas@xxxxxxxxxx> wrote: > One more requirement to add to the list: > > - In case of AWS, two different methods (RGWPostObj_ObjStore_S3::get_policy() and RGW_Auth_S3::authorize), will be making use of the Auth Engines to authenticate a request and the auth key extraction method will be different for both of them. The auth infrastructure needs to take care of this. Hi Pritha, Thanks for pointing this out! FormPost implementations in both S3 (RGWPostObj) and Swift require workflow very similar to AWS v4. They need to parse fragments of HTTP body to verify form's integrity (using signature) before making the ultimate decision whether a request is authenticated or not. I think that after extending the infrastructure to cover AWSv4 we would be also able to: 1. eradicate the get_policy() method of RGWPostObj, 2. avoid implementing similar thing in Swift's FormPost. Regards, Radek -- To unsubscribe from this list: send the line "unsubscribe ceph-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
