호스팅 TIP
보안
시스템
프로그래밍
리눅스
|
윈도우
|
하드웨어
|
OpenStack
|
기타
이용안내
|
호스팅 TIP
|
자유게시판
|
회원가입

월간 인기 게시물

게시물 1,372건
   
bucket policy 속성
글쓴이 : 최고관리자 날짜 : 2020-10-19 (월) 14:26 조회 : 731
글주소 :
                                

tmp 버킷 메타데이타 리스트
# rados ls -p default.rgw.meta --all |grep tmp
root tmp
root .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7



메타데이타 정보  

radosgw-admin metadata list
radosgw-admin metadata list bucket
radosgw-admin metadata list bucket.instance
radosgw-admin metadata list user

radosgw-admin metadata get bucket:<Bucket>
radosgw-admin metadata get bucket.instance:<Bucket>:<Bucket_ID>
radosgw-admin metadata get user:<User> 
  • user : 사용자 정보 유지
  • bucket : 버킷이름과 버킷 인스턴스 ID 매핑유지
  • bucket.instance : 버킷 인스턴스 정보보관

# radosgw-admin metadata get bucket.instance:tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7
{
    "key": "bucket.instance:tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7",
    "ver": {
        "tag": "_mlB26cZMYkoUVcXlSfRlDp-",
        "ver": 40
    },
    "mtime": "2020-10-08 04:19:37.175810Z",
    "data": {
        "bucket_info": {
            "bucket": {
                "name": "tmp",
                "marker": "d023f7c3-a498-42e7-91a5-817901906ccf.364103.7",
                "bucket_id": "d023f7c3-a498-42e7-91a5-817901906ccf.364103.7",
                "tenant": "",
                "explicit_placement": {
                    "data_pool": "",
                    "data_extra_pool": "",
                    "index_pool": ""
                }
            },
            "creation_time": "2020-07-08 07:42:32.558096Z",
            "owner": "51e527f97976b6bbe0efa43ad1cbdbdf4c78824d8c1c526a18abb21462749e9a",
            "flags": 0,
            "zonegroup": "8bb0a154-9fd1-438c-ac8a-4dc73b1c6c28",
            "placement_rule": "default-placement",
            "has_instance_obj": "true",
            "quota": {
                "enabled": false,
                "check_on_raw": true,
                "max_size": -1,
                "max_size_kb": 0,
                "max_objects": -1
            },
            "num_shards": 0,
            "bi_shard_hash_type": 0,
            "requester_pays": "false",
            "has_website": "false",
            "swift_versioning": "false",
            "swift_ver_location": "",
            "index_type": 0,
            "mdsearch_config": [],
            "reshard_status": 0,
            "new_bucket_instance_id": ""
        },
        "attrs": [
            {
                "key": "user.rgw.acl",
                "val": "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"
            },
            {
                "key": "user.rgw.iam-policy",
                "val": "ew0KICAiVmVyc2lvbiI6ICIyMDEyLTEwLTE3IiwNCiAgIklkIjogIlMzUG9saWN5SWQxIiwNCiAgIlN0YXRlbWVudCI6IFsNCiAgICB7DQogICAgICAiU2lkIjogIklQQWxsb3ciLA0KICAgICAgIkVmZmVjdCI6ICJEZW55IiwNCiAgICAgICJQcmluY2lwYWwiOiAiKiIsDQogICAgICAiQWN0aW9uIjogInMzOioiLA0KICAgICAgIlJlc291cmNlIjogWw0KICAgICAgICAgImFybjphd3M6czM6Ojp0bXAiLA0KICAgICAgICAgImFybjphd3M6czM6Ojp0bXAvKiINCiAgICAgIF0sDQogICAgICAiQ29uZGl0aW9uIjogew0KICAgICAgICAgIk5vdElwQWRkcmVzcyI6IHsNCiAgICAgICAgICAiYXdzOlNvdXJjZUlwIjogIjIxMS41NS4xMTMuMSINCiAgICAgICAgfQ0KICAgICAgfQ0KICAgIH0NCiAgXQ0KfQ0K"
            },
            {
                "key": "user.rgw.x-amz-read",
                "val": "IiIA"
            }
        ]
    }
}




setxattr  특정풀(Pool)의 오브젝트(object)에 속성값을 입력하는 명령어 

# rados --help |grep xattr
   listxattr <obj-name>
   getxattr <obj-name> attr
   setxattr <obj-name> attr val
   rmxattr <obj-name> attr
     


# rados ls -p default.rgw.meta --all |grep tmp
root tmp
root .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7


오브젝트 속성(xattr) 확인 
rados listxattr <obj_name> -p default.rgw.meta
# rados listxattr .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7  user.rgw.iam-policy -p default.rgw.meta --namespace root
ceph.objclass.version
user.rgw.acl
user.rgw.iam-policy
user.rgw.x-amz-read



버킷정책 확인
rados getxattr <obj_name> <attr> -p default.rgw.meta
# rados getxattr .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7 user.rgw.iam-policy -p default.rgw.meta --namespace root
{
  "Version": "2012-10-17",
  "Id": "S3PolicyId1",
  "Statement": [
    {
      "Sid": "IPAllow",
      "Effect": "Deny",
      "Principal": "*",
      "Action": "s3:*",
      "Resource": [
         "arn:aws:s3:::tmp",
         "arn:aws:s3:::tmp/*"
      ],
      "Condition": {
         "NotIpAddress": {
          "aws:SourceIp": "211.55.113.1"
        }
      }
    }
  ]
}



Bucket Policy 삭제
rados rmxattr <obj_name> <attr> -p default.rgw.meta
# rados rmxattr .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7 user.rgw.iam-policy -p default.rgw.meta --namespace root

# rados getxattr .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7  user.iam-policy -p default.rgw.meta --namespace root
error getting xattr default.rgw.meta/.bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7/user.iam-policy: (61) No data available



user.rgw.iam-policy 속성정보 삭제 / 확인
# rados ls -p default.rgw.meta --all |grep tmp
root tmp
root .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7


# rados listxattr .bucket.meta.tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7  -p default.rgw.meta --namespace root
ceph.objclass.version
user.rgw.acl
user.rgw.x-amz-read



# radosgw-admin metadata get bucket.instance:tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7
{
    "key": "bucket.instance:tmp:d023f7c3-a498-42e7-91a5-817901906ccf.364103.7",
    "ver": {
        "tag": "_mlB26cZMYkoUVcXlSfRlDp-",
        "ver": 40
    },
    "mtime": "2020-10-19 04:59:44.606019Z",
    "data": {
        "bucket_info": {
            "bucket": {
                "name": "tmp",
                "marker": "d023f7c3-a498-42e7-91a5-817901906ccf.364103.7",
                "bucket_id": "d023f7c3-a498-42e7-91a5-817901906ccf.364103.7",
                "tenant": "",
                "explicit_placement": {
                    "data_pool": "",
                    "data_extra_pool": "",
                    "index_pool": ""
                }
            },
            "creation_time": "2020-07-08 07:42:32.558096Z",
            "owner": "51e527f97976b6bbe0efa43ad1cbdbdf4c78824d8c1c526a18abb21462749e9a",
            "flags": 0,
            "zonegroup": "8bb0a154-9fd1-438c-ac8a-4dc73b1c6c28",
            "placement_rule": "default-placement",
            "has_instance_obj": "true",
            "quota": {
                "enabled": false,
                "check_on_raw": true,
                "max_size": -1,
                "max_size_kb": 0,
                "max_objects": -1
            },
            "num_shards": 0,
            "bi_shard_hash_type": 0,
            "requester_pays": "false",
            "has_website": "false",
            "swift_versioning": "false",
            "swift_ver_location": "",
            "index_type": 0,
            "mdsearch_config": [],
            "reshard_status": 0,
            "new_bucket_instance_id": ""
        },
        "attrs": [
            {
                "key": "user.rgw.acl",
                "val": "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"
            },
            {
                "key": "user.rgw.x-amz-read",
                "val": "IiIA"
            }
        ]
    }
}


※ 참고
remove policy 형태로 삭제된건 바로 삭제되었으나...
rmxattr user.rgw.iam-policy 필드를 삭제하는건 policy 에서 인식되는게 약 10~15분정도 차이가 있음

이름 패스워드
비밀글 (체크하면 글쓴이만 내용을 확인할 수 있습니다.)
왼쪽의 글자를 입력하세요.
   

 



인기검색어
and
all
ceph
http
snmp
 1
mysql
 1
for
mon
 1
--
 1
zero
 4
 
사이트명 : 모지리네 | 대표 : 이경현 | 개인커뮤니티 : 랭키닷컴 운영체제(OS) | 경기도 성남시 분당구 | 전자우편 : mojily골뱅이chonnom.com
| 이용약관 | 개인정보취급방침 | 책임의한계와 법적고지 | 이메일무단수집거부 | 이용안내
Copyright ⓒ www.chonnom.com www.kyunghyun.net www.mojily.net. All rights reserved.