Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add indication about Cellar principal policy #22

Open
gaelreyrol opened this issue Dec 27, 2021 · 2 comments
Open

Add indication about Cellar principal policy #22

gaelreyrol opened this issue Dec 27, 2021 · 2 comments
Labels
documentation Improvements or additions to documentation

Comments

@gaelreyrol
Copy link

It is possible to apply specific rights using a policy but we don't give any information about which principal should be used.
In that case it is also possible to create a cellar add-on and give access (read-only for example) to another cellar add-on using its principal.

Cellar add-on principal should be used like this:

{
        "Id": "Policy1639060414161",
        "Version": "2012-10-17",
        "Statement": [
                {
                        "Sid": "Stmt1639060333099",
                        "Action": [
                                "s3:GetObject"
                        ],
                        "Effect": "Allow",
                        "Resource": "arn:aws:s3:::my-bucket/*",
                        "Principal": {
                                "AWS": "arn:aws:iam:::user/<cellar_id>"
                        }
                }
        ]
}
@gaelreyrol gaelreyrol added the enhancement New feature or request label Dec 27, 2021
@gaelreyrol gaelreyrol self-assigned this Dec 27, 2021
@gaelreyrol
Copy link
Author

Customers should refer to this documentation to create policies: https://docs.ceph.com/en/nautilus/radosgw/bucketpolicy/

@juliamrch juliamrch transferred this issue from CleverCloud/doc.clever-cloud.com Nov 28, 2023
@cnivolle cnivolle added documentation Improvements or additions to documentation and removed enhancement New feature or request labels Feb 2, 2024
@cnivolle
Copy link
Member

@Dekabry I Think this issue can be related to #471.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation Improvements or additions to documentation
Projects
Documentation updates
Status: No status
Milestone
No milestone
Development

No branches or pull requests
2 participants
@cnivolle @gaelreyrol