-
-
Notifications
You must be signed in to change notification settings - Fork 290
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Missing prompt for MFA serial number in delete request using MFA code #16267
Comments
I'm sorry, i'm not sure that I understood you. |
The issue should be fixed in the current snapshot build.
|
I update it to the latest snapshot build and still get the same error. |
Please make sure to update to build 9.1.0.42045. |
Oh, I had another update, now I have option to add the mfa arn and then the code.
I try to delete directory in MFA enabled bucket, using regular user (not root) with policy attached that included s3:Delete & s3:DeleteObjectVersion with aws:MultiFactorAuthPresent. |
The error message might indicate we attempt to change the MFA configuration on the bucket. Can you provide the HTTP log for the error with the instructions from 1. Footnotes |
i delete sensetive info from the log. |
You are attempting to delete a bucket which possibly implies removing the MFA delete option which is only allowed for root users 1. Footnotes |
I tried to use aws cli to test it, using this commad i don't need the MFA at all:
the directory is deleted, no need to use mfa. when i tried to user s3api i get the same error.
An error occurred (AccessDenied) when calling the DeleteObject operation: This operation may only be performed by the bucket owner An error occurred (TokenCodeInvalidError) when calling the DeleteObject operation: The serial number mfaserial and/or token code codenumber you provided is not valid`. i'm not sure why but with s3api i can't do commands that i can with cli with the same user. |
Support delete using MFA in default implementation.
I try to delete a file or directory in MFA enabled s3 bucket and I got an error after adding my MFA code.
My IAM user have policy attached that included
s3:Delete
&s3:DeleteObjectVersion
withaws:MultiFactorAuthPresent
.To Reproduce
Steps to reproduce the behavior:
Expected behavior
using mfa to delete the file/directory from the cyberduck
Screenshots
Desktop (please complete the following information):
Log Files
Additional context
This is by api issue or mission the permission in aws? how to solve it?
The text was updated successfully, but these errors were encountered: