Browse Source

trying to get anonymous access for buckets working

pull/5049/head
Max Roby 1 year ago
committed by Chris Lu
parent
commit
f33f7c10f0
  1. 11
      k8s/charts/seaweedfs/templates/post-install-bucket-hook.yaml
  2. 10
      k8s/charts/seaweedfs/values.yaml

11
k8s/charts/seaweedfs/templates/post-install-bucket-hook.yaml

@ -50,11 +50,18 @@ spec:
- "/bin/sh" - "/bin/sh"
- "-ec" - "-ec"
- | - |
{{- range $.Values.filer.s3.createBuckets }}
{{- range $reg, $props := $.Values.filer.s3.createBuckets }}
exec /bin/echo \ exec /bin/echo \
"s3.bucket.create --name {{ . }}" |\
"s3.bucket.create --name {{ $props.name }}" |\
/usr/bin/weed shell /usr/bin/weed shell
{{- end }} {{- end }}
{{- range $reg, $props := $.Values.filer.s3.createBuckets }}
{{- if $props.anonymousRead }}
exec /bin/echo \
"s3.configure --user anonymous --buckets {{ $props.name }}" |\
/usr/bin/weed shell
{{- end }}
{{- end }}
ports: ports:
- containerPort: {{ .Values.master.port }} - containerPort: {{ .Values.master.port }}
name: swfs-master name: swfs-master

10
k8s/charts/seaweedfs/values.yaml

@ -579,12 +579,14 @@ filer:
# You may specify buckets and users to be created during the install process # You may specify buckets and users to be created during the install process
# The user's credentials must be in an existing secret using the key names: # The user's credentials must be in an existing secret using the key names:
# 'ACCESS_KEY_ID' and 'ACCESS_SECRET_KEY' # 'ACCESS_KEY_ID' and 'ACCESS_SECRET_KEY'
#createBuckets:
# - bucket-a
# - bucket-b
# createBuckets:
# - name: bucket-a
# anonymousRead: true
# - name: bucket-b
# anonymousRead: false
# createUsers: # createUsers:
# - name: friend # - name: friend
# actions: "read,write,list"
# actions: "Read,Write,List"
# buckets: "bucket-b" # buckets: "bucket-b"
# secretName: friend_s3_creds # secretName: friend_s3_creds

Loading…
Cancel
Save