tests: adapt s3 acl tests to new default behavior

nspcc-dev / neofs-testcases

NeoFS integration testcases

GNU General Public License v3.0

3 stars 18 forks source link

tests: adapt s3 acl tests to new default behavior #894

Open evgeniiz321 opened 2 weeks ago

evgeniiz321 commented 2 weeks ago

closes #885

evgeniiz321 commented 2 weeks ago

@roman-khimov shouldn't it be 2 different actions to enable ACLs for objects and buckets? Right now this command:

s3_bucket.put_bucket_policy(
                    self.s3_client,
                    bucket,
                    {
                        "Statement": [
                            {
                                "Sid": "BucketEnableACL",
                                "Effect": "Allow",
                                "Action": ["s3:PutObject"],
                                "Resource": ["*"],
                            }
                        ],
                    },
                )

Enables ACLs both for objects and buckets, another thing - only this Action is accepted - "Action": ["s3:PutObject"],, all other cause 500 from s3 gw.

roman-khimov commented 1 week ago

I think it's better to be verified against Amazon. But I've also found https://github.com/nspcc-dev/neofs-s3-gw/issues/1023 and https://github.com/nspcc-dev/neofs-s3-gw/issues/1022.