mirror of
https://github.com/versity/versitygw.git
synced 2026-07-19 06:22:19 +00:00
ed1ad6b623
Distinguish public bucket policy no-match from explicit deny during anonymous access checks. This preserves ACL fallback only for requests that are not allowed by policy, while ensuring a matching Deny statement short-circuits authorization and returns AccessDenied even when a public ACL would otherwise grant access.