paulmataruso/zulip
1
0
Fork 0
mirror of https://github.com/zulip/zulip.git synced 2025-10-23 04:52:12 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
8.x
zulip/puppet
History
Alex Vandiver 9ea1b99dbb nginx: Strip off request headers which might affect S3's behaviour. 
Clients making requests to Zulip with a `Authorization: Basic ...` for
an upload in S3 pass along all of their request headers to the S3
backend -- causing errors of the form:

```xml
<?xml version="1.0" encoding="UTF-8"?>
<Error>
  <Code>InvalidArgument</Code>
  <Message>Only one auth mechanism allowed; only the X-Amz-Algorithm
  query parameter, Signature query string parameter or the
  Authorization header should be specified</Message>
  <ArgumentName>Authorization</ArgumentName>
  <ArgumentValue>Basic ...</ArgumentValue>
  <RequestId>...</RequestId>
  <HostId>...</HostId>
</Error>
```

Strip off all request headers which AWS reports that S3 may read[^1].

Fixes: #30180.

[^1]: https://docs.aws.amazon.com/AmazonS3/latest/API/RESTCommonRequestHeaders.html

(cherry picked from commit 549f4fe00b)
2024-07-26 14:27:45 -07:00
..
zulip
nginx: Strip off request headers which might affect S3's behaviour.
2024-07-26 14:27:45 -07:00
zulip_ops
puppet: Switch from top-level fact variables to facts dict.
2024-05-07 11:18:22 -07:00
deps.yaml
puppet: Update dependencies.
2023-05-11 10:51:37 -07:00