Apply bucket policy to bucket for LDAP user: what is the correct identifier for principal

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello everyone,
I try to apply the bucket policy to my bucket for LDAP user but it doesn't work.
For user created by radosgw-admin, the policy works fine.

{

  "Version": "2012-10-17",

  "Statement": [{

    "Effect": "Allow",

    "Principal": {"AWS": ["arn:aws:iam:::user/radosgw-user"]},

    "Action": "s3:*",

    "Resource": [

      "arn:aws:s3:::shared-tenant-test",

      "arn:aws:s3:::shared-tenant-test/*"

    ]

  }]

}


I would like to know whether the principal identifier for LDAP user is different from rgw user? Anyone knows the identifier for LDAP user? Isn't it "arn:aws:iam:::user/ldap-user"?

Thanks a lot
Ha

_______________________________________________
ceph-users mailing list
ceph-users@xxxxxxxxxxxxxx
http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
[Index of Archives]     [Information on CEPH]     [Linux Filesystem Development]     [Ceph Development]     [Ceph Large]     [Ceph Dev]     [Linux USB Development]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]     [xfs]

  Powered by Linux