Hi guys, We use Ceph as S3-compatible object store and we have our self-development web-interface for our customers on different domain.
Now we use Hammer(FCGI + Apache as RGW frontend) but we have plans for upgrade Ceph from hammer to luminous. In luminous release FCGI frontend was dropped and Civetweb frontend always checks CORS. As I said above, our web-interface works on different domain and by default Civetweb returns 403 оn HTTP OPTIONS request from our web-interface. If I PUT CORS for some bucket, everything works fine. But isn’t good idea because bucket owner can PUTs your own CORS and overwrite our default CORS and lost access to bucker from our web-interface. It’s not cool) In past we rewrite http response header by Apache rules for our web-interface and pass CORS check. But now it’s impossible to solve on balancer level. What is right way? --- Best regards, Aleksandr Rudenko
_______________________________________________ ceph-users mailing list ceph-users@lists.ceph.com http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
