Browse Source
The TestJWTAuthenticationFlow was failing because the IAM policies for S3ReadOnlyRole and S3AdminRole were missing the 'sts:ValidateSession' action. ### Problem: - JWT authentication was working correctly (tokens parsed successfully) - But IsActionAllowed returned false for sts:ValidateSession action - This caused all JWT auth tests to fail with errCode=1 ### Solution: - Added sts:ValidateSession action to S3ReadOnlyPolicy - Added sts:ValidateSession action to S3AdminPolicy - Both policies now include the required STS session validation permission ### Test Results: ✅ TestJWTAuthenticationFlow now passes 100% (6/6 test cases) ✅ Read-Only JWT Authentication: All operations work correctly ✅ Admin JWT Authentication: All operations work correctly ✅ JWT token parsing and validation: Fully functional This ensures consistent policy definitions across all S3 API JWT tests, matching the policies used in s3_end_to_end_test.go.pull/7160/head
1 changed files with 12 additions and 0 deletions
Loading…
Reference in new issue