Unable to set swift container ACL's on existing containers
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ceph (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Trusty |
Fix Released
|
High
|
Unassigned | ||
Utopic |
Fix Released
|
High
|
Unassigned |
Bug Description
[Impact]
Ceph RADOS Gateway users are unable to change ACL's on existing containers. Also breaks usage by juju.
[Test Case]
swift post -r '.r:*,.rlistings' 61853c5a-
swift post -r '.r:*,.rlistings' 61853c5a-
->
Container POST failed:
http://
Unauthorized AccessDenied
[Regression Potential]
Minimal - the code change is limited in scope and is from the primary upstream developer.
[Original Bug Report]
Upstream bug: http://
Setting ACL's on initial container creation works just fine:
$ swift post -r '.r:*,.rlistings' 61853c5a-
container is created with ".r:*" read acl
but if I try to update the ACL post creation, I get a 401 unauthorized:
$ swift post -r '.r:*,.rlistings' 61853c5a-
Container POST failed:
http://
Unauthorized AccessDenied
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: radosgw 0.80.1-0ubuntu1
ProcVersionSign
Uname: Linux 3.13.0-24-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.2
Architecture: amd64
Date: Fri May 23 07:57:02 2014
ProcEnviron:
TERM=screen-bce
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: ceph
UpgradeStatus: No upgrade log present (probably fresh install)
description: | updated |
Note that this is not a proposed regression - 0.79 also has this problem.