Ask Your Question
0

Unauthenticated access to swift

asked 2012-03-19 09:37:24 -0500

rtb gravatar image

I am about to suggest a trivial modification to the proxy server allowing unauthenticated (read-) access to a swift container provided that the container's (read-)ACL says "ANYBODY".

The background of this is to allow distribution of javascripts or even complete primitive web sites that implement full-blown access to files in swift using the S3 protocol. They couldn't be served from a genuine web server without being suspected of cross-site-scripting by the browser, but it works with swift acting as an Ersatz-apache.

Before I submit the mod for review, I'd like to make sure I am not unkowingly re-inventing the wheel or otherwise attempting something that would be considered heretic.

edit retag flag offensive close merge delete

3 answers

Sort by ยป oldest newest most voted
0

answered 2012-03-20 09:42:01 -0500

rtb gravatar image

Thanks John Dickinson, that solved my question.

edit flag offensive delete link more
0

answered 2012-03-19 14:58:56 -0500

notmyname gravatar image

Staticweb allows you to handle index pages and limited redirects.

Another option is to add "X-Container-Read: .r:*" to your container to mark it as public. This will allow GETs to objects in the container without an auth token (eg from a browser)

edit flag offensive delete link more
0

answered 2012-03-19 14:48:25 -0500

There's Swift's StaticWeb - http://swift.openstack.org/misc.html#module-swift.common.middleware.staticweb (http://swift.openstack.org/misc.html#...)

It let's you serve content straight out of a container.

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2012-03-19 09:37:24 -0500

Seen: 176 times

Last updated: Mar 20 '12