Closed sprat closed 1 year ago
@sprat Before continuing, I edited out your secret + access key from the dump above. Please ensure that you weren't using these credentials, and if you were, change them at once.
There is a google specific override in minio-go. To be honest I don't know the background of this and whether they have now implemented V4.
Oh right, I missed the credentials in the logs! It's not that serious because it's a test account but I've rotated the secret.
Nice catch, the problem may be due to the line you quoted. But it seems that Google now implemented the V4 signature and does not support V2 anymore. I'll double-check. Do you suggest I file a bug in the minio-go repository?
It seems like there is an issue for it: https://github.com/minio/minio-go/issues/1800
A PR would be very welcome, especially if you are able to test it out.
Ok, I'll try to do that.
Closing this.
I am trying to use MinIO warp to benchmark the Google Cloud Storage which only supports V4 signatures.
I've found the hidden
--signature
option of the CLI by looking at the code: by default, V4 signatures should be used. But it seems that the Warp client totally ignores the signature option (and also the default value) and always use a V2 signature in my scenario.Here is command I run:
And here is the debug log in the MinIO client's output:
We can see that the signature type is properly passed to the client, but the
Authorization
header show that a V2 signature is used anyway.I would have proposed a patch to fix this problem but I have not being able to figure out where the problem is: the code which uses the signature option seems ok to me