Harden S3 DC handling

start.sh

@@ -272,7 +272,6 @@ S3_SECONDARY_BUCKET="${S3_SECONDARY_BUCKET:-${ENTE_S3_SECONDARY_BUCKET:-}}"
 S3_SECONDARY_ACCESS_KEY="${S3_SECONDARY_ACCESS_KEY:-${ENTE_S3_SECONDARY_ACCESS_KEY:-}}"
 S3_SECONDARY_SECRET_KEY="${S3_SECONDARY_SECRET_KEY:-${ENTE_S3_SECONDARY_SECRET_KEY:-}}"
 S3_SECONDARY_PREFIX="${S3_SECONDARY_PREFIX:-${ENTE_S3_SECONDARY_PREFIX:-}}"
-S3_SECONDARY_DC_RAW="${S3_SECONDARY_DC:-${ENTE_S3_SECONDARY_DC:-}}"
 S3_SECONDARY_ENABLED=false
 S3_SECONDARY_ENDPOINT_HOST=""
 
@@ -282,7 +281,6 @@ S3_COLD_BUCKET="${S3_COLD_BUCKET:-${ENTE_S3_COLD_BUCKET:-}}"
 S3_COLD_ACCESS_KEY="${S3_COLD_ACCESS_KEY:-${ENTE_S3_COLD_ACCESS_KEY:-}}"
 S3_COLD_SECRET_KEY="${S3_COLD_SECRET_KEY:-${ENTE_S3_COLD_SECRET_KEY:-}}"
 S3_COLD_PREFIX="${S3_COLD_PREFIX:-${ENTE_S3_COLD_PREFIX:-}}"
-S3_COLD_DC_RAW="${S3_COLD_DC:-${ENTE_S3_COLD_DC:-}}"
 S3_COLD_ENABLED=false
 S3_COLD_ENDPOINT_HOST=""
 
@@ -339,14 +337,33 @@ S3_ARE_LOCAL_BUCKETS="$(printf '%s' "${S3_ARE_LOCAL_BUCKETS:-${ENTE_S3_ARE_LOCAL
 
 DEFAULT_SECONDARY_DC="wasabi-eu-central-2-v3"
 DEFAULT_COLD_DC="scw-eu-fr-v3"
+S3_VALID_DC_NAMES=("b2-eu-cen" "scw-eu-fr" "scw-eu-fr-locked" "scw-eu-fr-v3" "wasabi-eu-central-2" "wasabi-eu-central-2-v3" "wasabi-eu-central-2-derived" "b5" "b6")
 
-S3_PRIMARY_DC="${S3_PRIMARY_DC:-${ENTE_S3_PRIMARY_DC:-b2-eu-cen}}"
-S3_SECONDARY_DC="$DEFAULT_SECONDARY_DC"
-S3_COLD_DC="$DEFAULT_COLD_DC"
-S3_DERIVED_DC="${S3_DERIVED_DC:-${ENTE_S3_DERIVED_DC:-$S3_PRIMARY_DC}}"
+validate_s3_dc() {
+  local candidate="$1"
+  local fallback="$2"
+  local label="$3"
+  if [ -z "$candidate" ]; then
+    printf '%s\n' "$fallback"
+    return
+  fi
+  for allowed in "${S3_VALID_DC_NAMES[@]}"; do
+    if [ "$candidate" = "$allowed" ]; then
+      printf '%s\n' "$candidate"
+      return
+    fi
+  done
+  log WARN "Ignoring unknown $label S3 data center '$candidate'; falling back to $fallback"
+  printf '%s\n' "$fallback"
+}
+
+S3_PRIMARY_DC="$(validate_s3_dc "${S3_PRIMARY_DC:-${ENTE_S3_PRIMARY_DC:-}}" "b2-eu-cen" "primary")"
+S3_SECONDARY_DC="$(validate_s3_dc "${S3_SECONDARY_DC:-${ENTE_S3_SECONDARY_DC:-}}" "$DEFAULT_SECONDARY_DC" "secondary")"
+S3_COLD_DC="$(validate_s3_dc "${S3_COLD_DC:-${ENTE_S3_COLD_DC:-}}" "$DEFAULT_COLD_DC" "cold")"
+S3_DERIVED_DC="$(validate_s3_dc "${S3_DERIVED_DC:-${ENTE_S3_DERIVED_DC:-}}" "$S3_PRIMARY_DC" "derived")"
 
 S3_SECONDARY_ENV_PRESENT=false
-for value in "$S3_SECONDARY_ENDPOINT" "$S3_SECONDARY_REGION" "$S3_SECONDARY_BUCKET" "$S3_SECONDARY_ACCESS_KEY" "$S3_SECONDARY_SECRET_KEY" "$S3_SECONDARY_PREFIX" "$S3_SECONDARY_DC_RAW"; do
+for value in "$S3_SECONDARY_ENDPOINT" "$S3_SECONDARY_REGION" "$S3_SECONDARY_BUCKET" "$S3_SECONDARY_ACCESS_KEY" "$S3_SECONDARY_SECRET_KEY" "$S3_SECONDARY_PREFIX"; do
   if [ -n "$value" ]; then
     S3_SECONDARY_ENV_PRESENT=true
     break
@@ -367,17 +384,14 @@ if [ "$S3_NOT_CONFIGURED" = "false" ] && [ "$S3_SECONDARY_ENV_PRESENT" = true ];
     S3_SECONDARY_DC=""
   else
     S3_SECONDARY_ENABLED=true
-    if [ -n "$S3_SECONDARY_DC_RAW" ]; then
-      S3_SECONDARY_DC="$S3_SECONDARY_DC_RAW"
-    fi
   fi
 else
-S3_SECONDARY_ENABLED=false
-S3_SECONDARY_DC=""
+  S3_SECONDARY_ENABLED=false
+  S3_SECONDARY_DC=""
 fi
 
 S3_COLD_ENV_PRESENT=false
-for value in "$S3_COLD_ENDPOINT" "$S3_COLD_REGION" "$S3_COLD_BUCKET" "$S3_COLD_ACCESS_KEY" "$S3_COLD_SECRET_KEY" "$S3_COLD_PREFIX" "$S3_COLD_DC_RAW"; do
+for value in "$S3_COLD_ENDPOINT" "$S3_COLD_REGION" "$S3_COLD_BUCKET" "$S3_COLD_ACCESS_KEY" "$S3_COLD_SECRET_KEY" "$S3_COLD_PREFIX"; do
   if [ -n "$value" ]; then
     S3_COLD_ENV_PRESENT=true
     break
@@ -398,9 +412,6 @@ if [ "$S3_NOT_CONFIGURED" = "false" ] && [ "$S3_COLD_ENV_PRESENT" = true ]; then
     S3_COLD_DC=""
   else
     S3_COLD_ENABLED=true
-    if [ -n "$S3_COLD_DC_RAW" ]; then
-      S3_COLD_DC="$S3_COLD_DC_RAW"
-    fi
   fi
 else
   S3_COLD_ENABLED=false