Home Explore Help
Sign In
SMusatov
/
seaweedfs
mirror of https://github.com/seaweedfs/seaweedfs.git
1
0
Fork 0
Files Wiki
Branch: test-reverting-lock-table
Branches Tags
seaweedfs
/
weed
/
s3api
/
s3api_acp.go

s3api_acp.go 763 B
Permalink History Raw

1234567891011121314151617181920212223242526272829 
  1. package s3api
    2. 

  2. 

  3. import (
    4. 

  4. 	"github.com/seaweedfs/seaweedfs/weed/s3api/s3_constants"
    5. 

  5. 	"github.com/seaweedfs/seaweedfs/weed/s3api/s3account"
    6. 

  6. 	"github.com/seaweedfs/seaweedfs/weed/s3api/s3err"
    7. 

  7. 	"net/http"
    8. 

  8. )
    9. 

  9. 

  10. func getAccountId(r *http.Request) string {
    11. 

  11. 	id := r.Header.Get(s3_constants.AmzAccountId)
    12. 

  12. 	if len(id) == 0 {
    13. 

  13. 		return s3account.AccountAnonymous.Id
    14. 

  14. 	} else {
    15. 

  15. 		return id
    16. 

  16. 	}
    17. 

  17. }
    18. 

  18. 

  19. func (s3a *S3ApiServer) checkAccessByOwnership(r *http.Request, bucket string) s3err.ErrorCode {
    20. 

  20. 	metadata, errCode := s3a.bucketRegistry.GetBucketMetadata(bucket)
    21. 

  21. 	if errCode != s3err.ErrNone {
    22. 

  22. 		return errCode
    23. 

  23. 	}
    24. 

  24. 	accountId := getAccountId(r)
    25. 

  25. 	if accountId == s3account.AccountAdmin.Id || accountId == *metadata.Owner.ID {
    26. 

  26. 		return s3err.ErrNone
    27. 

  27. 	}
    28. 

  28. 	return s3err.ErrAccessDenied
    29. 

  29. }
    30.