Feature #48247: cephadm: RGW rgw_ldap_secret - Orchestrator - Ceph

Actions

Copy link

Feature #48247

open

cephadm: RGW rgw_ldap_secret

Added by Dan Williams over 3 years ago. Updated about 1 year ago.

Status:

New

Priority:

Normal

Assignee:

Category:

cephadm/rgw

Target version:

Ceph - v15.2.6

% Done:

Source:

Community (user)

Tags:

low-hanging-fruit

Backport:

Reviewed:

Affected Versions:

Pull request ID:

Description

When deploying RGW via cephadm the path specified in rgw_ldap_secret should be mounted into the container.

Alternatively a mechanism to load the secret direct from the mon config database, maybe checking for a prefix of 'config:' and use the string directly as a password rather than a path on the local system or load as a pointer to a different config variable.

I suspect modifying the RGW might be the better solution, although would mean the password would be cleartext in the config database.

Without either of the above it is not possible to use the s3 ldap integration for an rgw deployed via cephadm
https://docs.ceph.com/en/latest/radosgw/ldap-auth/#configuring-the-ceph-object-gateway-to-use-ldap-authentication

Related issues 1 (1 open — 0 closed)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph » Orchestrator

Custom queries

Feature #48247

cephadm: RGW rgw_ldap_secret

Updated by Sebastian Wagner over 3 years ago

Updated by Sebastian Wagner about 3 years ago

Updated by Sebastian Wagner over 2 years ago

Updated by Sebastian Wagner over 2 years ago

Updated by Laura Flores over 1 year ago

Updated by Laura Flores over 1 year ago

Updated by Redouane Kachach Elhichou about 1 year ago