mirrors/seaweedfs
1
0
Fork 0
mirror of https://github.com/seaweedfs/seaweedfs.git synced 2026-05-30 13:36:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
091aad59dc98e5257bfb31d50bc4b8a11074dc89
seaweedfs/test
History
Chris Lu dc5621d2ae s3: use oidc: prefix for trust-policy conditions in IAM example (#9653) 
* s3: use oidc: prefix for trust-policy conditions in IAM example

Trust-policy conditions for AssumeRoleWithWebIdentity see OIDC claims
under the oidc: prefix, so the docker example's bare "roles" key never
matched and denied every web-identity assume against those roles. Switch
the three roles to oidc:roles.

Also document the available trust-policy condition keys (oidc:iss/sub/aud,
oidc:<claim>, aws:FederatedProvider, aws:userid, sts:DurationSeconds) and
note that roleMapping selects the role for direct OIDC bearer auth while
STS uses the explicit RoleArn plus trust policy.

* s3: clarify aws:userid differs between trust policy and request auth

aws:userid is the raw sub claim during trust-policy evaluation, but a
stable sub+iss hash (ComputeParentUser) during S3 request authorization
after the role is assumed. Note both so the two contexts aren't conflated.
2026-05-23 20:02:48 -07:00
..
data
volume: large_volume version has bug when using in memory index
2021-06-28 15:48:07 -07:00
erasure_coding
test(ec): deterministically populate disks before multi-disk EC balance check (#9611)
2026-05-21 09:39:55 -07:00
foundationdb
go 1.25
2026-03-09 23:10:27 -07:00
fuse_dlm
go fmt
2026-04-10 17:31:14 -07:00
fuse_integration
test(fuse): stream verify-phase diagnostics from writeback stress test
2026-04-27 19:44:26 -07:00
fuse_p2p
chore(filer): remove -mount.p2p flag; registry is always on (#9183)
2026-04-21 23:00:11 -07:00
java/spark
build(deps): bump io.netty:netty-transport-native-epoll from 4.1.132.Final to 4.2.13.Final in /test/java/spark (#9365)
2026-05-08 06:00:51 -07:00
kafka
build(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in /test/kafka (#9489)
2026-05-13 14:45:44 -07:00
kms
fix: serialize SSE-KMS metadata when bucket default encryption applies KMS (#8780)
2026-03-26 14:07:01 -07:00
metadata_subscribe
fix: keep metadata subscriptions progressing (#8730) (#8746)
2026-03-23 15:26:54 -07:00
mq
fix: add missing backslash for volume extraArgs in helm chart (#7676)
2025-12-08 23:21:02 -08:00
multi_master
go fmt
2026-04-10 17:31:14 -07:00
nfs
feat(nfs): UDP MOUNT v3 responder + real-Linux e2e mount harness (#9267)
2026-04-28 14:06:35 -07:00
pjdfstest
ci(pjdfstest): cache docker layers via GHA to avoid apt mirror flakes (#9106)
2026-04-16 12:50:19 -07:00
plugin_workers
fix(ec): bring ec.encode worker and EC/volume helpers to parity with shell (#9599)
2026-05-21 02:16:28 -07:00
postgres
update go version
2026-03-09 11:12:05 -07:00
random_access
Java 3.59
2023-11-13 08:23:53 -08:00
s3
s3: use oidc: prefix for trust-policy conditions in IAM example (#9653)
2026-05-23 20:02:48 -07:00
s3tables
fix(s3): stop S3 Tables routes from swallowing buckets named "buckets" or "get-table" (#9566)
2026-05-19 14:24:25 -07:00
samba
test: fix fd leak in the Samba DLM handoff test (promote xfail checks) (#9592)
2026-05-20 16:17:13 -07:00
sftp
chore: execute goimports to format the code (#7983)
2026-01-07 13:06:08 -08:00
testutil
fix(test): reserve mini ports on all interfaces; bound risingwave cleanup shell (#9545)
2026-05-18 14:16:22 -07:00
tls_rotation
feat(security): hot-reload HTTPS certs without restart (k8s cert-manager) (#9181)
2026-04-21 20:20:11 -07:00
tus
Add TUS protocol support for resumable uploads (#7592)
2025-12-14 21:56:07 -08:00
vacuum
test(vacuum): fix flaky TestVacuumIntegration across multiple volumes (#9061)
2026-04-13 17:56:32 -07:00
volume_server
test(volume): fix race in TestReplicatedUploadSucceedsImmediatelyAfterAllocate (#9613)
2026-05-21 09:58:37 -07:00