Project

General

Profile

Actions
Copy link

Feature #64429

open

Introducing IAM and AWS STS quotas/limits

Added by Oguzhan Ozmen 3 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Target version:
-
% Done:

0%

Source:
Tags:
rgw iam sts
Backport:
Reviewed:
Affected Versions:
Pull request ID:

Description

As described at https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html, AWS imposes default and max limits for some IAM resources. For example,

Adjustable quotas for IAM resources
Resource                                Default quota   Maximum quota
Customer managed policies per account   1500            5000
Groups per account                      300             500
Instance profiles per account           1000            5000
Managed policies per role               10              20
Managed policies per user.              10              20
Role trust policy length                2048 characters 4096 characters
Roles per account                       1000            5000
Server certificates per account         20              1000

Although https://access.redhat.com/documentation/en-us/red_hat_ceph_storage/4/html/developer_guide/ceph-object-gateway-and-the-s3-api mentions about existence of some relevant limits in Ceph but based on our early testing, there's no limits being imposed by ceph.

In this issue, we can work on how to impose IAM and STS quotas that limit the size of objects and how to make default limits configurable.

No data to display

Actions
Copy link

Also available in: Atom PDF