* Travis Rhoden <trhoden@xxxxxxxxx> [20121109 09:55]: > I'm not sure what I've done wrong here: > > Things are okay as client.admin: > > # rbd -p images --id admin ls > test > > But not as client.images: > > # rbd -p images --id images ls > error: (1) Operation not permitted > > The privs/caps seem okay in ceph auth: > > # ceph auth list > <snip> > client.admin > key: <snip> > caps: [mds] allow > caps: [mon] allow * > caps: [osd] allow * > client.images > key: <snip> > caps: [mon] allow r > caps: [osd] allow rwx pool=images > client.volumes > key: <snip> > caps: [mon] allow r > caps: [osd] allow rwx pool=volumes, allow rx pool=images > I had a very similar problem after I upgraded my test cluster from argonaut to 0.53. For me it was a "caps" parsing issue involving the '=' character (which has been fixed in 0.54. A nice person on IRC helped me out. Updating the caps from something like this: > caps: [osd] allow rwx pool=volumes, allow rx pool=images To this: caps: [osd] allow rwx pool volumes, allow rx pool images ...fixed the issue for me. Apparently in 0.54 parsing of '=' in a caps line will work properly again. Ben -- ________________________________________________________________________ pub 4096R/318B6A97 2009-05-11 Ben Poliakoff <benp@xxxxxxxx> Primary key fingerprint: 3F23 EBC8 B73E 92B7 0A67 705A 8219 DCF0 318B 6A97
Attachment:
signature.asc
Description: Digital signature
