[tahoe-lafs-trac-stream] [tahoe-lafs] #1425: blacklist support
tahoe-lafs
trac at tahoe-lafs.org
Mon Jun 27 10:44:00 PDT 2011
#1425: blacklist support
-------------------------------+-----------------------
Reporter: warner | Owner:
Type: enhancement | Status: new
Priority: major | Milestone: 1.9.0
Component: code-frontend-web | Version: 1.8.2
Keywords: | Launchpad Bug:
-------------------------------+-----------------------
For various reasons, webapi gateway operators might want to have the
ability to deny access to specific files. Putting this directly in tahoe,
rather than obligating these operators to run a frontend proxy (like
apache or nginx or something), will make it easier for everyone to use.
The attached patch creates a blacklist file, with a list of storage-index
strings and a reason for each. Any webapi operation (indeed *any*
operation, so FTP/SFTP too) that tries to access a node with one of the
given SIs will throw an exception that contains the reason. The webapi
frontend translates this exception into an HTTP "403 Forbidden" response.
--
Ticket URL: <http://tahoe-lafs.org/trac/tahoe-lafs/ticket/1425>
tahoe-lafs <http://tahoe-lafs.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list