Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 9 of 9 for getConditionValues (0.14 sec)

  1. cmd/auth-handler.go

    		return cred, s3Err
    	}
    	if globalIAMSys.IsAllowed(policy.Args{
    		AccountName:     cred.AccessKey,
    		Groups:          cred.Groups,
    		Action:          policy.Action(action),
    		ConditionValues: getConditionValues(r, "", cred),
    		IsOwner:         owner,
    		Claims:          cred.Claims,
    	}) {
    		// Request is allowed return the appropriate access key.
    		return cred, ErrNone
    	}
    
    	return cred, ErrAccessDenied
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Sep 17 16:45:46 UTC 2024
    - 26.1K bytes
    - Viewed (0)
  2. cmd/admin-handlers-users.go

    		checkDenyOnly = true
    	}
    
    	if !globalIAMSys.IsAllowed(policy.Args{
    		AccountName:     cred.AccessKey,
    		Groups:          cred.Groups,
    		Action:          policy.GetUserAdminAction,
    		ConditionValues: getConditionValues(r, "", cred),
    		IsOwner:         owner,
    		Claims:          cred.Claims,
    		DenyOnly:        checkDenyOnly,
    	}) {
    		writeErrorResponseJSON(ctx, w, errorCodes.ToAPIErr(ErrAccessDenied), r.URL)
    		return
    	}
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Oct 03 23:11:02 UTC 2024
    - 85.1K bytes
    - Viewed (0)
  3. cmd/admin-handlers-idp-ldap.go

    		if !globalIAMSys.IsAllowed(policy.Args{
    			AccountName:     cred.AccessKey,
    			Groups:          cred.Groups,
    			Action:          policy.ListServiceAccountsAdminAction,
    			ConditionValues: getConditionValues(r, "", cred),
    			IsOwner:         owner,
    			Claims:          cred.Claims,
    		}) {
    			writeErrorResponseJSON(ctx, w, errorCodes.ToAPIErr(ErrAccessDenied), r.URL)
    			return
    		}
    	} else {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sat Sep 21 11:35:40 UTC 2024
    - 19.1K bytes
    - Viewed (0)
  4. cmd/bucket-handlers.go

    		BucketName:      bucket,
    		ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
    		IsOwner:         false,
    	})
    
    	// Check if anonymous (non-owner) has access to upload objects.
    	writable := globalPolicySys.IsAllowed(policy.BucketPolicyArgs{
    		Action:          policy.PutObjectAction,
    		BucketName:      bucket,
    		ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Sep 12 12:24:04 UTC 2024
    - 63.4K bytes
    - Viewed (0)
  5. cmd/kms-handlers.go

    	return globalIAMSys.IsAllowed(policy.Args{
    		AccountName:     cred.AccessKey,
    		Groups:          cred.Groups,
    		Action:          policy.Action(action),
    		ConditionValues: getConditionValues(r, "", cred),
    		IsOwner:         owner,
    		Claims:          cred.Claims,
    		BucketName:      resource, // overloading BucketName as that's what the policy engine uses to assemble a Resource.
    	})
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 10.1K bytes
    - Viewed (0)
  6. cmd/s3-zip-handlers.go

    			//   status code 403 ("access denied") error.`
    			if globalPolicySys.IsAllowed(policy.BucketPolicyArgs{
    				Action:          policy.ListBucketAction,
    				BucketName:      bucket,
    				ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
    				IsOwner:         false,
    			}) {
    				_, err = getObjectInfo(ctx, bucket, zipPath, opts)
    				if toAPIError(ctx, err).Code == "NoSuchKey" {
    					s3Error = ErrNoSuchKey
    				}
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Mon Jun 10 15:31:51 UTC 2024
    - 15.8K bytes
    - Viewed (0)
  7. cmd/metrics.go

    		if !globalIAMSys.IsAllowed(policy.Args{
    			AccountName:     cred.AccessKey,
    			Groups:          cred.Groups,
    			Action:          policy.PrometheusAdminAction,
    			ConditionValues: getConditionValues(r, "", cred),
    			IsOwner:         owner,
    			Claims:          cred.Claims,
    		}) {
    			if ok {
    				tc.FuncName = "handler.MetricsAuth"
    				tc.ResponseRecorder.LogErrBody = true
    			}
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Aug 15 12:04:40 UTC 2024
    - 16.6K bytes
    - Viewed (0)
  8. cmd/admin-handlers.go

    		if globalIAMSys.IsAllowed(policy.Args{
    			AccountName:     cred.AccessKey,
    			Groups:          cred.Groups,
    			Action:          policy.GetObjectAction,
    			BucketName:      bucketName,
    			ConditionValues: getConditionValues(r, "", cred),
    			IsOwner:         owner,
    			ObjectName:      "",
    			Claims:          cred.Claims,
    		}) {
    			rd = true
    		}
    
    		if globalIAMSys.IsAllowed(policy.Args{
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Oct 04 11:32:32 UTC 2024
    - 99.7K bytes
    - Viewed (0)
  9. cmd/object-handlers.go

    			//   status code 403 ("access denied") error.`
    			if globalPolicySys.IsAllowed(policy.BucketPolicyArgs{
    				Action:          policy.ListBucketAction,
    				BucketName:      bucket,
    				ConditionValues: getConditionValues(r, "", auth.AnonymousCredentials),
    				IsOwner:         false,
    			}) {
    				_, err = getObjectInfo(ctx, bucket, object, opts)
    				if toAPIError(ctx, err).Code == "NoSuchKey" {
    					s3Error = ErrNoSuchKey
    				}
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sat Oct 05 05:16:15 UTC 2024
    - 117.4K bytes
    - Viewed (0)
Back to top