You are viewing a plain text version of this content. The canonical link for it is here.

Posted to common-issues@hadoop.apache.org by "Steve Loughran (JIRA)" <ji...@apache.org> on 2018/06/29 17:26:00 UTC

[jira] [Commented] (HADOOP-15569) Expand S3A Assumed Role docs

    [ https://issues.apache.org/jira/browse/HADOOP-15569?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16527989#comment-16527989 ] 

Steve Loughran commented on HADOOP-15569:
-----------------------------------------

Patch 001

* document assumed roles better, in particularly, the permissions you need for S3Guard read and S3Guard admin. 
* Change structure to avoid listing which commands need which perms, and be a bit expansive in what is needed, to line up for future changes (e.g. get/set object tags)
* I have tested the s3guard stuff with an assumed role.

> Expand S3A Assumed Role docs
> ----------------------------
>
>                 Key: HADOOP-15569
>                 URL: https://issues.apache.org/jira/browse/HADOOP-15569
>             Project: Hadoop Common
>          Issue Type: Sub-task
>          Components: documentation, fs/s3
>    Affects Versions: 3.1.0
>            Reporter: Steve Loughran
>            Assignee: Steve Loughran
>            Priority: Minor
>         Attachments: HADOOP-15569-001.patch
>
>
> The  S3A assumed role doc is now where we document the permissions needed to work with buckets
> # detail the permissions you need for s3guard user and admin ops
> # and what you need for SSE-KMS
> This involves me working them out, so presumably get some new stack traces
> also: fix any errors noted in the doc



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org