mirror of
https://github.com/versity/versitygw.git
synced 2026-07-02 16:54:25 +00:00
ed1ad6b623
Distinguish public bucket policy no-match from explicit deny during anonymous access checks. This preserves ACL fallback only for requests that are not allowed by policy, while ensuring a matching Deny statement short-circuits authorization and returns AccessDenied even when a public ACL would otherwise grant access.