There is no detail with GET /admin/metadata/user, only ids. For PHP, have a look at http://ceph.com/docs/master/radosgw/s3/php/ Alain De?: Shanil S [mailto:xielesshanil at gmail.com] Envoy??: mercredi 21 mai 2014 05:48 ??: DECHORGNAT Alain IMT/OLPS Objet?: Re: Access denied error for list users Hi Alain, Thanks.. I used the GET /admin/metadata/user to fetch the user list but it only shows the usernames in the list. I would like to show the other details too like bucket number,id etc. Can i use the same GET /admin/metadata/user to get all these details ? Also, is there any easy way to generate the access token authorization header using php ? On Tue, May 20, 2014 at 7:36 PM, <alain.dechorgnat at orange.com> wrote: Hi, GET /admin/user with no parameter doesn't work. You must use GET /admin/metadata/user to fetch the user list (with metadata capabity). Alain De?: ceph-users [mailto:ceph-users-bounces at lists.ceph.com] De la part de Shanil S Envoy??: mardi 20 mai 2014 07:13 ??: ceph-users at lists.ceph.com; wido at 42on.com; sage at inktank.com; Yehuda Sadeh Objet?: Access denied error for list users Hi, I am trying to create and list all users by using the functions http://ceph.com/docs/master/radosgw/adminops/ and i successfully created the access tokens but i am getting an access denied and 403 for listing users function. The GET /{admin}/user is used for getting the complete users list, but its not listing and getting the error. The user which called this function has the complete permission and i am adding the permission of this user { "type": "admin", ????????? "perm": "*"}, ??????? { "type": "buckets", ????????? "perm": "*"}, ??????? { "type": "caps", ????????? "perm": "*"}, ??????? { "type": "metadata", ????????? "perm": "*"}, ??????? { "type": "usage", ????????? "perm": "*"}, ??????? { "type": "users", ????????? "perm": "*"}], ? "op_mask": "read, write, delete", ? "default_placement": "", ? "placement_tags": [], ? "bucket_quota": { "enabled": false, ????? "max_size_kb": -1, ????? "max_objects": -1}} This is in the log file which executed the list user function ----------------------------------------------------------------------------------------------------- GET application/x-www-form-urlencoded Tue, 20 May 2014 05:06:57 GMT /admin/user/ 2014-05-20 13:06:59.506233 7f0497fa7700 15 calculated digest=Z8FgXRLk+ah5MUThpP9IBJrMnrA= 2014-05-20 13:06:59.506236 7f0497fa7700 15 auth_sign=Z8FgXRLk+ah5MUThpP9IBJrMnrA= 2014-05-20 13:06:59.506237 7f0497fa7700 15 compare=0 2014-05-20 13:06:59.506240 7f0497fa7700? 2 req 98:0.000308::GET /admin/user/:get_user_info:reading permissions 2014-05-20 13:06:59.506244 7f0497fa7700? 2 req 98:0.000311::GET /admin/user/:get_user_info:init op 2014-05-20 13:06:59.506247 7f0497fa7700? 2 req 98:0.000314::GET /admin/user/:get_user_info:verifying op mask 2014-05-20 13:06:59.506249 7f0497fa7700 20 required_mask= 0 user.op_mask=7 2014-05-20 13:06:59.506251 7f0497fa7700? 2 req 98:0.000319::GET /admin/user/:get_user_info:verifying op permissions 2014-05-20 13:06:59.506254 7f0497fa7700? 2 req 98:0.000322::GET /admin/user/:get_user_info:verifying op params 2014-05-20 13:06:59.506257 7f0497fa7700? 2 req 98:0.000324::GET /admin/user/:get_user_info:executing 2014-05-20 13:06:59.506291 7f0497fa7700? 2 req 98:0.000359::GET /admin/user/:get_user_info:http status=403 2014-05-20 13:06:59.506294 7f0497fa7700? 1 ====== req done req=0x7f04c800d7f0 http_status=403 ====== 2014-05-20 13:06:59.506302 7f0497fa7700 20 process_request() returned -13 ------------------------------------------------------------------------------------------------------------- Could you please check what is the issue ? I am using the ceph version : ceph version 0.80.1 _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you. _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.