api: Fix error status on anonymous put object

NeoFS is not supporting override ACL rules in container by anonymous. See cd4ddb3#diff-95f9fb7bdd6fbea098329acfc84ab26264360c926d41be2814e38e7a9d5768ffR33 Closes #847. Signed-off-by: Evgenii Baidakov <[email protected]>
nspcc-dev · Dec 15, 2023 · 1095dba · 1095dba
1 parent 38444c2
commit 1095dba
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/api/handler/put.go b/api/handler/put.go
@@ -454,6 +454,11 @@ func (h *handler) PostObject(w http.ResponseWriter, r *http.Request) {
 	}
 
 	if acl := auth.MultipartFormValue(r, "acl"); acl != "" {
+		if api.IsAnonymousRequest(r.Context()) {
+			h.logAndSendError(w, "anonymous can't override ACL rules", reqInfo, s3errors.GetAPIError(s3errors.ErrNotImplemented))
+			return
+		}
+
 		r.Header.Set(api.AmzACL, acl)
 		r.Header.Set(api.AmzGrantFullControl, "")
 		r.Header.Set(api.AmzGrantWrite, "")