You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Steve Loughran (JIRA)" <ji...@apache.org> on 2018/06/29 17:26:00 UTC
[jira] [Commented] (HADOOP-15569) Expand S3A Assumed Role docs
[ https://issues.apache.org/jira/browse/HADOOP-15569?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16527989#comment-16527989 ]
Steve Loughran commented on HADOOP-15569:
-----------------------------------------
Patch 001
* document assumed roles better, in particularly, the permissions you need for S3Guard read and S3Guard admin.
* Change structure to avoid listing which commands need which perms, and be a bit expansive in what is needed, to line up for future changes (e.g. get/set object tags)
* I have tested the s3guard stuff with an assumed role.
> Expand S3A Assumed Role docs
> ----------------------------
>
> Key: HADOOP-15569
> URL: https://issues.apache.org/jira/browse/HADOOP-15569
> Project: Hadoop Common
> Issue Type: Sub-task
> Components: documentation, fs/s3
> Affects Versions: 3.1.0
> Reporter: Steve Loughran
> Assignee: Steve Loughran
> Priority: Minor
> Attachments: HADOOP-15569-001.patch
>
>
> The S3A assumed role doc is now where we document the permissions needed to work with buckets
> # detail the permissions you need for s3guard user and admin ops
> # and what you need for SSE-KMS
> This involves me working them out, so presumably get some new stack traces
> also: fix any errors noted in the doc
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org