OpenStack Object Storage (swift)

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1430645
Comment #16

Comment 16 for bug 1430645

Revision history for this message

Christian Schwede (cschwede) wrote on 2015-03-13: Re: unauthorized delete from container with x-version-location

#16

I'm adding part of the review for the versioned write refactoring patch here to keep it private for now.

Thiago, thanks for updating the patch ( https://review.openstack.org/#/c/134347). I have one question: in https://review.openstack.org/#/c/134347/25/test/functional/tests.py line 2738 ff. we should ensure that none of the versioned objects itself is deleted (because account2 has no write permission there). So account2 might be able to delete the original object (which needs to be discussed if there is no write access to the version container), but the test needs to ensure nothing is deleted in the version container. Or am I wrong?