s3tables: remove unused ExtractPrincipalFromContext function

Removed the unused ExtractPrincipalFromContext utility and its accompanying iam/utils import to keep the new s3tables codebase clean.
2026-01-28 13:31:53 -08:00
parent e4e4dea140
commit d6f6bf4ce7
1 changed files with 0 additions and 27 deletions
--- a/weed/s3api/s3tables/permissions.go
+++ b/weed/s3api/s3tables/permissions.go
@@ -2,9 +2,6 @@ package s3tables

 import (
 	"fmt"
-	"strings"
-
-	"github.com/seaweedfs/seaweedfs/weed/iam/utils"
 )

 // Permission represents a specific action permission
@@ -193,30 +190,6 @@ func CanManageTags(principal, owner string) bool {
 	return CheckPermission("TagResource", principal, owner)
 }

-// ExtractPrincipalFromContext extracts the principal (account ID) from request context
-// For now, this returns the owner/creator, but can be extended to parse from request headers/certs
-func ExtractPrincipalFromContext(contextID string) string {
-	// Try to parse as ARN first
-	if strings.HasPrefix(contextID, "arn:") {
-		info := utils.ParsePrincipalARN(contextID)
-		if info.AccountID != "" {
-			return info.AccountID
-		}
-		if info.RoleName != "" {
-			return info.RoleName
-		}
-	}
-
-	// Extract from context, e.g., "user123" or "account-id"
-	// This is a simplified version - in production, this would parse AWS auth headers
-	// TODO: Parse AWS Signature V4 identity or mTLS identity
-	if strings.Contains(contextID, ":") {
-		parts := strings.Split(contextID, ":")
-		return parts[0]
-	}
-	return contextID
-}
-
 // AuthError represents an authorization error
 type AuthError struct {
 	Operation string