The rados gateway supports swift form of ACLs on buckets in which it is possible to set read/write permissions for each bucket to allow access for its objects. This can be done by setting the X-Container-Read, and X-Container-Write attributes on the containers. Each attribute is a comma delimited list of permitted users that are given the specific permission. Note that when using the keystone backed, the permissions are given at the tenant level, so they should be referred as such (using the tenant hex id). On Thu, Jul 4, 2013 at 11:27 PM, Alvaro Izquierdo Jimeno <aizquierdo@xxxxxxxx> wrote: > May anybody help me? > > > > Many thanks and regards, > > Álvaro. > > > > > > De: ceph-users-bounces@xxxxxxxxxxxxxx > [mailto:ceph-users-bounces@xxxxxxxxxxxxxx] En nombre de Alvaro Izquierdo > Jimeno > Enviado el: martes, 02 de julio de 2013 14:30 > Para: ceph-users@xxxxxxxxxxxxxx > Asunto: (keystone + radosgw ) users > > > > Hi all, > > > > I have been able to bind openstack keystone and radosgw and have checked > users created from keystone can make requests on radosgw. > > > > But, how can we handle several tenants and users from keystone? In swift, we > have the option of setting up ACLs in the config file and headers to mark > which user can make an operation in each container in a specific tenant (for > example). Does it exist that option with radosgw instead of swift? > > > > Many thanks in advanced and best regards, > > Álvaro. > > > > > > > ____________ > Verificada la ausencia de virus por G Data AntiVirus Versión: AVA 22.10661 > del 02.07.2013 Noticias de virus: www.antiviruslab.com > > > _______________________________________________ > ceph-users mailing list > ceph-users@xxxxxxxxxxxxxx > http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com > _______________________________________________ ceph-users mailing list ceph-users@xxxxxxxxxxxxxx http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
 |