S3 - Add IllegalLocationConstraint validation when creating buckets

2020-02-02 10:36:51 +00:00 · 2020-02-02 10:36:51 +00:00 · f74f08581a
commit f74f08581a
parent b971aee9d5
6 changed files with 182 additions and 95 deletions
--- a/moto/s3/exceptions.py
+++ b/moto/s3/exceptions.py
@ -127,6 +127,18 @@ class InvalidRequest(S3ClientError):
        )


+class IllegalLocationConstraintException(S3ClientError):
+    code = 400
+
+    def __init__(self, *args, **kwargs):
+        super(IllegalLocationConstraintException, self).__init__(
+            "IllegalLocationConstraintException",
+            "The unspecified location constraint is incompatible for the region specific endpoint this request was sent to.",
+            *args,
+            **kwargs
+        )
+
+
 class MalformedXML(S3ClientError):
    code = 400

--- a/moto/s3/responses.py
+++ b/moto/s3/responses.py
@ -29,6 +29,7 @@ from .exceptions import (
    InvalidPartOrder,
    MalformedXML,
    MalformedACLError,
+    IllegalLocationConstraintException,
    InvalidNotificationARN,
    InvalidNotificationEvent,
    ObjectNotInActiveTierError,
@ -585,6 +586,15 @@ class ResponseObject(_TemplateEnvironmentMixin, ActionAuthenticatorMixin):
            next_continuation_token = None
        return result_keys, is_truncated, next_continuation_token

+    def _body_contains_location_constraint(self, body):
+        if body:
+            try:
+                xmltodict.parse(body)["CreateBucketConfiguration"]["LocationConstraint"]
+                return True
+            except KeyError:
+                pass
+        return False
+
    def _bucket_response_put(
        self, request, body, region_name, bucket_name, querystring
    ):
@ -680,10 +690,16 @@ class ResponseObject(_TemplateEnvironmentMixin, ActionAuthenticatorMixin):
            return ""

        else:
+            # us-east-1, the default AWS region behaves a bit differently
+            # - you should not use it as a location constraint --> it fails
+            # - querying the location constraint returns None
+            # - LocationConstraint has to be specified if outside us-east-1
+            if (
+                region_name != DEFAULT_REGION_NAME
+                and not self._body_contains_location_constraint(body)
+            ):
+                raise IllegalLocationConstraintException()
            if body:
-                # us-east-1, the default AWS region behaves a bit differently
-                # - you should not use it as a location constraint --> it fails
-                # - querying the location constraint returns None
                try:
                    forced_region = xmltodict.parse(body)["CreateBucketConfiguration"][
                        "LocationConstraint"
--- a/moto/s3/utils.py
+++ b/moto/s3/utils.py
@ -37,7 +37,7 @@ def bucket_name_from_url(url):

 REGION_URL_REGEX = re.compile(
    r"^https?://(s3[-\.](?P<region1>.+)\.amazonaws\.com/(.+)|"
-    r"(.+)\.s3-(?P<region2>.+)\.amazonaws\.com)/?"
+    r"(.+)\.s3[-\.](?P<region2>.+)\.amazonaws\.com)/?"
 )