CR changes

Signed-off-by: shirady <57721533+shirady@users.noreply.github.com>

Author: shirady

src/endpoint/s3/s3_rest.js

@@ -343,12 +343,11 @@ async function authorize_request_iam_policy(req) {
 
     const resource_arn = _get_arn_from_req_path(req) || '*'; // special case for list all buckets in an account
     const method = _get_method_from_req(req);
-    const requesting_account = req.object_sdk.requesting_account;
     const iam_policies = account.iam_user_policies || [];
     if (iam_policies.length === 0) {
         if (req.object_sdk.nsfs_config_root) return; // We do not have IAM policies in NC yet
         dbg.log1('authorize_request_iam_policy: IAM user has no inline policies configured');
-        _throw_iam_access_denied_error_for_s3_operation(requesting_account, method, resource_arn);
+        _throw_iam_access_denied_error_for_s3_operation(account, method, resource_arn);
     }
 
     // parallel policy check
@@ -364,14 +363,14 @@ async function authorize_request_iam_policy(req) {
     const permission_result = await Promise.all(promises);
     let has_allow_permission = false;
     for (const permission of permission_result) {
-        if (permission === "DENY") _throw_iam_access_denied_error_for_s3_operation(requesting_account, method, resource_arn);
+        if (permission === "DENY") _throw_iam_access_denied_error_for_s3_operation(account, method, resource_arn);
         if (permission === "ALLOW") {
             has_allow_permission = true;
         }
     }
     if (has_allow_permission) return;
     dbg.log1('authorize_request_iam_policy: user has inline policies but none of them matched the method');
-    _throw_iam_access_denied_error_for_s3_operation(requesting_account, method, resource_arn);
+    _throw_iam_access_denied_error_for_s3_operation(account, method, resource_arn);
 }
 
 function _throw_iam_access_denied_error_for_s3_operation(requesting_account, method, resource_arn) {