2153775 – [cee][rgw] Upgrade to 4.3z1 with vault results in (AccessDenied) failures when accessing buckets.

Bug 2153775 - [cee][rgw] Upgrade to 4.3z1 with vault results in (AccessDenied) failures when accessing buckets.

Summary: [cee][rgw] Upgrade to 4.3z1 with vault results in (AccessDenied) failures whe...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	RGW
Sub Component:
Version:	6.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	---
Target Release:	6.0
Assignee:	Adam C. Emerson
QA Contact:	Vidushi Mishra
Docs Contact:	Eliska
URL:
Whiteboard:
Depends On:	2136304 2162135
Blocks:	2126050
TreeView+	depends on / blocked

Reported:	2022-12-15 13:01 UTC by Marcus Watts
Modified:	2023-03-20 19:00 UTC (History)
CC List:	32 users (show)
Fixed In Version:	ceph-17.2.5-49.el9cp
Doc Type:	Enhancement
Doc Text:	.The Ceph Object Gateway S3 policy errors are now more useful Previously, Ceph Object Gateway S3 policy error messages were opaque and not very useful. The initial issue with not being able to access data in the buckets after upgrading versions seemed to be the result of an accepted but invalid principal being ignored silently on ingest but rejected on use later due to a code change. With this release, the policy now prints detailed and useful error messages. There is also a new `rgw-policy-check` command that lets policy documents be tested in the command line, and a new option `rgw policy reject invalid principals` that is `false` by default and that rejects, with an error message, invalid principals on ingest only rather than ignoring them without error.
Clone Of:	2136304
Environment:
Last Closed:	2023-03-20 18:59:40 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHCEPH-5801	0	None	None	None	2022-12-15 13:04:59 UTC
Red Hat Product Errata	RHBA-2023:1360	0	None	None	None	2023-03-20 19:00:50 UTC

Comment 43 errata-xmlrpc 2023-03-20 18:59:40 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 6.0 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:1360

Note You need to log in before you can comment on or make changes to this bug.

aemerson
akraj
akupczyk
amathuri
anrao
bhubbard
cbodley
ceph-eng-bugs
cephqe-warriors
choffman
dwojewod
ekristov
ggugliel
kbader
kkeithle
ksirivad
lflores
mbenjamin
mkasturi
mwatts
nojha
pdhange
rfriedma
rmandyam
roemerso
rzarzyns
sbaldwin
sseshasa
tserlin
vereddy
vimishra
vumrao