1
0
mirror of https://github.com/minio/minio.git synced 2025-01-14 16:25:01 -05:00
Commit Graph

185 Commits

Author SHA1 Message Date
Pontus Leitzler
81d21850ec Root CAs can be used for backend without TLS () 2018-10-28 06:21:00 +05:30
Harshavardhana
18d9a20ff6 Enable admin users API on gateway ()
This is only enabled when etcd is enabled, healing is only
enabled for erasure coded backend.
2018-10-17 17:25:16 -07:00
Harshavardhana
b0c9ae7490 Add audit logging for S3 and Web handlers ()
This PR brings an additional logger implementation
called AuditLog which logs to http targets

The intention is to use AuditLog to log all incoming
requests, this is used as a mechanism by external log
collection entities for processing Minio requests.
2018-10-12 12:25:59 -07:00
Harshavardhana
143e7fe300 Add etcd support to support STS on gateway mode () 2018-10-12 11:32:18 -07:00
Harshavardhana
54ae364def Introduce STS client grants API and OPA policy integration ()
This PR introduces two new features

- AWS STS compatible STS API named AssumeRoleWithClientGrants

```
POST /?Action=AssumeRoleWithClientGrants&Token=<jwt>
```

This API endpoint returns temporary access credentials, access
tokens signature types supported by this API

  - RSA keys
  - ECDSA keys

Fetches the required public key from the JWKS endpoints, provides
them as rsa or ecdsa public keys.

- External policy engine support, in this case OPA policy engine

- Credentials are stored on disks
2018-10-09 14:00:01 -07:00
Krishnan Parthasarathi
9e5c4df106 Gateway should honour --address flag while checking port availability ()
Fixes 
2018-09-06 16:42:33 -07:00
Harshavardhana
7d7e21aebb Merge initConfig logic to ConfigSys () 2018-08-19 13:57:18 -07:00
Harshavardhana
a6b8a5487a Fail gateway properly with an error on port conflicts () 2018-08-17 21:06:36 -07:00
Harshavardhana
0e02328c98 Migrate config.json from config-dir to backend ()
This PR is the first set of changes to move the config
to the backend, the changes use the existing `config.json`
allows it to be migrated such that we can save it in on
backend disks.

In future releases, we will slowly migrate out of the
current architecture.

Fixes 
2018-08-15 10:11:47 +05:30
poornas
5f69f04909 nas gateway: fix regression in global bucket policy initialization ()
Fixes 
globalPolicySys used to be initialized in fs/xl layer. The referenced
commit moved this logic to server/gateway initialization,but a check
to avoid double initialization prevented globalPolicySys to be loaded
from disk for NAS.

fixes regression from commit be1700f595
2018-08-03 15:12:18 -07:00
Anis Elleuch
9c5e971a58 Add new console/http loggers ()
- Add console target logging, enabled by default.
- Add http target logging, which supports an endpoint
  with basic authentication (username/password are passed
  in the endpoint url itself)
- HTTP target logging is asynchronous and some logs can be
  dropped if channel buffer (10000) is full
2018-07-19 15:55:06 -07:00
Anis Elleuch
be1700f595 Avoid startup abort when a notify target is down ()
Minio server was preventing itself to start when any notification
target is down and not running. The PR changes the behavior by
avoiding startup abort in that case, so the user will still
be able to access Minio server using mc admin commands after
a restart or set config commands.
2018-07-10 07:20:31 +05:30
Harshavardhana
abf209b1dd load bucket policies using object layer API ()
This PR fixes an issue during gateway mode
where underlying policies were not translated
into meaningful policies.
2018-06-27 12:29:48 +05:30
Andreas Auernhammer
cd152f404a replace os.Exit with panic for logger.CriticalIf ()
This commit prevents complete server failures caused by
`logger.CriticalIf` calls. Instead of calling `os.Exit(1)`
the function now executes a panic with a special value
indicating that a critical error happend. At the top HTTP
handler layer panics are recovered and if its a critical
error the client gets an InternalServerError status code.

Further this allows unit tests to cover critical-error code
paths.
2018-06-25 13:51:49 -07:00
kannappanr
577d10674d
Cleanup stack trace in error logs ()
Add compile time GOROOT path to the list of prefix
of file paths to be removed.

Add webhandler function names to the slice that
stores function names to terminate logging.
2018-06-18 12:04:46 -07:00
Bala FA
6a53dd1701 Implement HTTP POST based RPC ()
Added support for new RPC support using HTTP POST.  RPC's 
arguments and reply are Gob encoded and sent as HTTP 
request/response body.

This patch also removes Go RPC based implementation.
2018-06-06 14:21:56 +05:30
Harshavardhana
537fd8c821 Bring nicer ui error if creds are missing in Gateway () 2018-06-01 15:45:11 -07:00
Harshavardhana
74328c3061 Implement auto cert reloading () 2018-05-31 12:30:15 -07:00
Yaroslav Skopets
a50cc7e937 Add Prometheus metrics for Minio gateway () 2018-05-30 10:13:46 +05:30
Harshavardhana
71c4ff9d10 Fix tabs/indents in help message () 2018-05-21 11:11:57 -07:00
Anis Elleuch
c525424179 Return detailed msg for notification errors () 2018-05-09 15:11:24 -07:00
Anis Elleuch
32700fca52 Enhance fatal errors printing of common issues seen by users () 2018-05-08 19:04:36 -07:00
Bala FA
0d52126023 Enhance policy handling to support SSE and WORM ()
- remove old bucket policy handling
- add new policy handling
- add new policy handling unit tests

This patch brings support to bucket policy to have more control not
limiting to anonymous.  Bucket owner controls to allow/deny any rest
API.

For example server side encryption can be controlled by allowing
PUT/GET objects with encryptions including bucket owner.
2018-04-24 15:53:30 -07:00
Bala FA
76cc65531c use package name correctly () 2018-04-21 19:23:54 -07:00
Harshavardhana
57b8db2088 Cleanup help to bring concise self-help message () 2018-04-13 11:57:05 -07:00
kannappanr
57a3d9c16c
Modify fatalIf, startup and update message logging code ()
Use a common logging framework to log fatalIf, startup, Info and Update
messages.
2018-04-10 09:37:14 -07:00
kannappanr
f8a3fd0c2a
Create logger package and rename errorIf to LogIf ()
Removing message from error logging
Replace errors.Trace with LogIf
2018-04-05 15:04:40 -07:00
kannappanr
91fd8ffeb7
Move http package inside cmd () 2018-04-05 14:19:27 -07:00
Harshavardhana
30ab71c9d9 Add missing healthcheck router for gateway () 2018-04-05 07:37:54 +05:30
Bala FA
0e4431725c make notification as separate package ()
* Remove old notification files

* Add net package

* Add event package

* Modify minio to take new notification system
2018-03-15 13:03:41 -07:00
kannappanr
d32f90fe95 Honor global flags irrespective of the position. ()
Flags like `json, config-dir, quiet` are now honored even if they are
between minio and gateway in the cli, like, `minio --json gateway s3`.

Fixes 
2018-02-28 20:13:33 -08:00
poornas
4f73fd9487 Unify gateway and object layer. ()
* Unify gateway and object layer. Bring bucket policies into
object layer.
2018-02-09 15:19:30 -08:00
ebozduman
24d9d7e5fa Removes logrus package and refactors logging messages ()
This fix removes logrus package dependency and refactors the console
logging as the only logging mechanism by removing file logging support.
It rearranges the log message format and adds stack trace information
whenever trace information is not available in the error structure.
It also adds `--json` flag support for server logging.
When minio server is started with `--json` flag, all log messages are
displayed in json format, with no start-up and informational log
messages.
Fixes   
2018-01-17 07:24:46 -08:00
Harshavardhana
f25ec31565 Set maxResources appropriately for gateway like server () 2017-12-24 20:09:30 +05:30
kannappanr
a1c1a18dc5 Remove "logger" field from config.json ()
File logging removed as part of improvement to server logging.

config.json format updated to version 21.

Fixes 
2017-12-06 12:48:29 +05:30
Harshavardhana
eb2894233c Convert gateways into respective packages ()
- Make azure gateway a package
- Make b2 gateway a package
- Make gcs gateway a package
- Make s3 gateway a package
- Make sia gateway a package
2017-12-05 17:58:09 -08:00
Harshavardhana
8efa82126b
Convert errors tracer into a separate package () 2017-11-25 11:58:29 -08:00
kannappanr
26e9f78a86 Display help when access/secret key is not set ()
Display help message, when access and secret keys are not set in
any of the gateway.

Fixes 
2017-11-01 11:45:27 -07:00
Timon Wong
6400f506da Simplify gateway backend registration () 2017-10-27 15:07:46 -07:00
A. Elleuch
866dffcd62 log: Store http request/responses in a log file ()
When MINIO_TRACE_DIR is provided, create a new log file and store all
HTTP requests + responses data, body are excluded to reduce memory
consumption. MINIO_HTTP_TRACE=1 enables logging. Use non mem
consuming http req/resp recorders, the maximum is about 32k per request.
This logs to STDOUT, body logging is disabled for PutObject PutObjectPart
GetObject.
2017-10-25 10:59:53 -07:00
Krishna Srinivas
7e05b826fa Figure out projectID for GCS automatically from credentials.json ()
fixes 
2017-10-20 13:59:12 -07:00
Harshavardhana
0c0d1e4150 Implement backblaze-b2 gateway support ()
Fixes https://github.com/minio/minio/issues/4072
2017-10-13 16:26:16 +05:30
Harshavardhana
e26a706dff Ignore reservedBucket checks for net/rpc requests ()
All `net/rpc` requests go to `/minio`, so the existing
generic handler for reserved bucket check would essentially
erroneously send errors leading to distributed setups to
wait infinitely.

For `net/rpc` requests alone we should skip this check and
allow resource bucket names to be from `/minio` .
2017-09-01 12:16:54 -07:00
A. Elleuch
b918a6592f gcs: Better parsing of address flag () 2017-07-20 16:39:11 -07:00
Bala FA
c3dd7c1f6c Refactor HTTP server to address bugs ()
* Refactor HTTP server to address bugs
* Remove unnecessary goroutine to start multiple TCP listeners.
* HTTP server waits for shutdown to maximum of Server.ShutdownTimeout
  than per serverShutdownPoll.
* Handles new connection errors properly.
* Handles read and write timeout properly.
* Handles error on start of HTTP server properly by exiting minio
  process.

Fixes   & fixed review comments
2017-07-12 16:33:21 -07:00
Harshavardhana
2d23cd4f39 gcs: Fetch port as GlobalString(). ()
Currently we were looking for `address` flag
under local flags. This PR fixes 
2017-07-11 18:06:26 -07:00
ebozduman
0e5b9c7fe4 Adds 'gcs not ready for production' msg () 2017-06-27 19:44:47 -07:00
A. Elleuch
eaa41e4086 gcs: Check if the given project id argument exists ()
Using GCS resource manager API, check if the provided
project id is already created and associated to the current
user account.
2017-06-23 22:10:29 -07:00
Krishnan Parthasarathi
237c8af5ef Improve GCS gateway example instruction () 2017-06-23 13:13:26 -07:00
Krishnan Parthasarathi
fe426944ea Fix GCS help message () 2017-06-20 14:25:16 -07:00
Harshavardhana
5a78266821 gateway/gcs: Complete minio browser support for gcs. ()
Fixes 
2017-06-19 19:45:13 -07:00
Harshavardhana
f99f218999 Add support for reading and saving config on Gateway. ()
This is also a first step towards supporting bucket
notification for gateway.
2017-06-16 16:01:41 -07:00
poornas
12b2fc894b Remove profile option for gcs from gateway help message () 2017-06-16 15:01:34 -07:00
Krishna Srinivas
2aa76e7407 Change md5Sum to etag () 2017-06-16 14:58:49 -07:00
Remco Verhoef
0dab038858 Cleanup and update the PR with the master branch. 2017-06-16 14:55:32 -07:00
Anis Elleuch
5d602034ea gateway: Use default params when no args provided ()
For S3 & Azure, use default parameters when no arguments (endpoint) are
provided. This also avoids a crash.
2017-06-16 14:54:37 -07:00
Remco Verhoef
dd7e47f264 Add access and secret key to example, needed to access Minio Gateway 2017-06-16 14:54:37 -07:00
Remco Verhoef
de5374f74c Map S3 regions to Google (multi)regions 2017-06-16 14:53:36 -07:00
Remco Verhoef
0a8cf1a6b0 Allow bucket creation in different regions, closes and
* I needed to remove the region check from PutBucketHandler
2017-06-16 14:53:36 -07:00
Remco Verhoef
6508da5fde Add usage for GCS gateway, closes 2017-06-16 14:53:36 -07:00
Remco
ace4f9fd15 Implement gateway support Google Cloud Storage 2017-06-16 14:47:02 -07:00
splinter98
8293f546af Add support for MQTT server as a notification target ()
This implementation is similar to AMQP notifications:

* Notifications are published on a single topic as a JSON feed
* Topic is configurable, as is the QoS. Uses the paho.mqtt.golang
  library for the mqtt connection, and supports connections over tcp
  and websockets, with optional secure tls support.
* Additionally the minio server configuration has been bumped up
  so mqtt configuration can be added.
* Configuration migration code is added with tests.

MQTT is an ISO standard M2M/IoT messaging protocol and was
originally designed for applications for limited bandwidth
networks. Today it's use is growing in the IoT space.
2017-06-14 17:27:49 -07:00
Bala FA
3dfe254a11 gateway: make each backend as subcommands. ()
Fixes 
2017-06-08 23:28:45 -07:00
Krishna Srinivas
2c56788f8d Validate gateway arguments ()
Fixes 
2017-06-08 11:20:56 -07:00
poornas
6651c2fc5f disable settings change on browser in gateway mode () 2017-06-06 14:56:41 -07:00
Harshavardhana
1c3f244fc5 creds: Secretkey should be generated upto 40 characters in length. ()
Current code allowed it wrongly to generate secret key upto 100
we should only use 100 as a value to validate but for generating
it should be 40.

Fixes 
2017-06-05 15:18:03 -07:00
Harshavardhana
432bf7d99e Fail if formatting is wrong in our CI tests. ()
We didn't fail before, we should helps in avoiding
formatting issues to creep into the codebase.
2017-06-02 14:05:51 -07:00
poornas
18c4e5d357 Enable browser support for gateway () 2017-06-01 09:43:20 -07:00
Anis Elleuch
542f7ae42c gateway: Reject endpoint pointing to local gateway ()
Show an error when the user enters an endpoint url pointing
to the gateway server itself.
2017-05-16 21:13:29 -07:00
Krishnan Parthasarathi
02910725c5 Make gateway help for s3/azure similar () 2017-05-04 10:38:48 -07:00
Remco Verhoef
5016649f47 Add s3 backend to help, fixes ()
* Add s3 backend to help, fixes 

* Add samples for Gateway usage with S3
2017-05-03 17:55:30 -07:00
Krishna Srinivas
01f04c717e gateway: reject bad path segments in URL () 2017-04-28 17:17:18 -07:00
Krishna Srinivas
0d32b22359 gateway: Fix help message for gateway () 2017-04-28 16:42:16 -07:00
Remco Verhoef
3a539ce660 Implement gateway S3 support () 2017-04-27 11:26:00 -07:00
Krishna Srinivas
e6b2253da9 gateway: Fix help message for custom Azure Blob Storage endpoint. () 2017-04-14 11:02:43 -07:00
Krishna Srinivas
c5249c35d3 gateway: Support for custom endpoint. () 2017-04-11 17:44:26 -07:00
Bala FA
de204a0a52 Add extensive endpoints validation () 2017-04-11 15:44:27 -07:00
Aditya Manthramurthy
096427f973 Add deliveryMode parameter for AMQP notfication target ()
Configuration migration was done.

Also adds documentation about AMQP configuration parameters.

Fixes 
2017-03-31 03:34:26 -07:00
Bala FA
6e9c91f43a fix: use its own lock in serverConfigV17 ()
Previously serverConfigV17 used a global lock that made any instance of
serverConfigV17 depended on single global serverConfigMu.

This patch fixes by having individual lock per instances.
2017-03-30 22:26:24 -07:00
Bala FA
2df8160f6a server: handle command line and env variables at one place. () 2017-03-30 11:21:19 -07:00
Aditya Manthramurthy
a099319e66 Support access format for database notification targets ()
* Add configuration parameter "format" for db targets and perform
  configuration migration.
* Add PostgreSQL `access` format: This causes Minio to append all events
  to the configured table. Prefix, suffix and event filters continue
  to be supported for this mode too.
* Update documentation for PostgreSQL notification target.
* Add MySQL `access` format: It is very similar to the same format for
  PostgreSQL.
* Update MySQL notification documentation.
2017-03-27 11:27:25 -07:00
Bala FA
d3cb79a57c Refactor logger ()
This patch fixes below

* Previously fatalIf() never writes log other than first logging target.
* quiet flag is not honored to show progress messages other than startup messages.
* Removes console package usage for progress messages.
2017-03-23 16:36:00 -07:00
Anis Elleuch
11e15f9b4c config: Remove level in console/file loggers ()
Also rename fileName field in file logger to filename
2017-03-23 08:27:22 -07:00
Aditya Manthramurthy
2463ae243a Add support for MySQL notifications (fixes ) ()
As a new configuration parameter is added, configuration version is
bumped up from 14 to 15.

The MySQL target's behaviour is identical to the PostgreSQL: rows are
deleted from the MySQL table on delete-object events, and are
created/updated on create/over-write events.
2017-03-17 09:29:17 -07:00
Krishna Srinivas
cea4cfa3a8 Implement S3 Gateway to third party cloud storage providers. ()
Currently supported backend is Azure Blob Storage.

```
export MINIO_ACCESS_KEY=azureaccountname
export MINIO_SECRET_KEY=azureaccountkey
minio gateway azure
```
2017-03-16 12:21:58 -07:00