Feature #55438
openmgr/dashboard: concerns regarding dashboard object store access
0%
Description
Description¶
Only one pair of credentials can be set for the dashboard's access to the object stores in a Ceph cluster (`ceph dashboard set-rgw-api-access-key` and `dashboard set-rgw-api-secret-key`).
Should a Ceph cluster host multiple object stores, every object store's "dashboard admin" user must be configured to use the same credentials.
It would be a security enhancement in my eyes if a separate pair of credentials can be configured per object store.
Maybe the `ceph dashboard set-rgw-api-acces-key` and `ceph dashboard set-rgw-api-secret-key` subcommands can be extended to take the object store/realm name
Target persona¶
Context¶
The dashboard uses one pair of credentials to access every object store in the cluster (`ceph dashboard set-rgw-api-access-key` and `dashboard set-rgw-api-secret-key`).
No data to display