openstack/swift
Code Issues Proposed changes
swift/test/functional
History
Matthew Oliver d2fc261457 Authorise versioned write PUTs before copy 
Currently a versioned write PUT uses a pre-authed request to move
it into the versioned container before checking whether the
user is authorised. This can lead to some interesting behaviour
whereby a user can select a versioned object path that it does not
have access to, request a put on that versioned object, and this
request will execute the copy part of the request before it fails
due to lack of permissions.

This patch changes the behaviour to be the same as versioned DELETE
where the request is authorised before anything is moved.

Change-Id: Ia8b92251718d10b1eb44a456f28d3d2569a30003
Closes-Bug: #1562175
2016-08-26 11:44:44 -04:00
..
__init__.py
Enable in-process func tests to optionally use encryption
2016-07-28 14:19:48 -05:00
swift_test_client.py
Merge "Last-Modified header support on HEAD/GET container"
2016-08-11 14:44:12 +00:00
test_access_control.py
Add comments to role-based access control functional tests
2016-02-15 20:08:43 +01:00
test_account.py
Use more specific asserts in functional tests
2016-07-15 13:33:56 +00:00
test_container.py
Use more specific asserts in functional tests
2016-07-15 13:33:56 +00:00
test_object.py
Use more specific asserts in functional tests
2016-07-15 13:33:56 +00:00
tests.py
Authorise versioned write PUTs before copy
2016-08-26 11:44:44 -04:00