Feature #55438: mgr/dashboard: concerns regarding dashboard object store access - Dashboard - Ceph

Actions

Copy link

Feature #55438

open

mgr/dashboard: concerns regarding dashboard object store access

Added by Alexander Trost about 2 years ago.

Status:

New

Priority:

Normal

Assignee:

Category:

Target version:

% Done:

Source:

Tags:

Backport:

Reviewed:

Affected Versions:

Pull request ID:

Description

Description¶

Only one pair of credentials can be set for the dashboard's access to the object stores in a Ceph cluster (`ceph dashboard set-rgw-api-access-key` and `dashboard set-rgw-api-secret-key`).
Should a Ceph cluster host multiple object stores, every object store's "dashboard admin" user must be configured to use the same credentials.
It would be a security enhancement in my eyes if a separate pair of credentials can be configured per object store.
Maybe the `ceph dashboard set-rgw-api-acces-key` and `ceph dashboard set-rgw-api-secret-key` subcommands can be extended to take the object store/realm name

Target persona¶

Examples...Examples...

Context¶

The dashboard uses one pair of credentials to access every object store in the cluster (`ceph dashboard set-rgw-api-access-key` and `dashboard set-rgw-api-secret-key`).

No data to display

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph » mgr » Dashboard

Custom queries

Feature #55438

mgr/dashboard: concerns regarding dashboard object store access

Description¶

Target persona¶

Context¶