MyFavMirrors/minio
1
0
Fork 0
mirror of https://github.com/minio/minio.git synced 2024-12-26 07:05:55 -05:00
Code Issues Packages Projects Releases Wiki Activity
1e7e5e297c
minio/docs/multi-user/README.md
Harshavardhana 1e7e5e297c
Add canned policy support (#6637) 
This PR adds an additional API where we can create
a new set of canned policies which can be used with one
or many users.
2018-10-16 12:48:19 -07:00

1.5 KiB
Raw Blame History

Minio multi-user Quickstart Guide Slack

This document explains how to add, revoke users. Multi-user as name implies means Minio supports long term users other than default credentials, each of these users can be configured to deny or allow access to buckets, resources.

Get started

In this document we will explain in detail on how to configure multiple users.

1. Prerequisites

2. Create a new user and policy

Create new canned policy getonly with newuser.json use mc admin policies. This policy enables users to download all objects in my-bucketname.

cat > getonly.json << EOF
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Action": [
        "s3:GetObject"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::my-bucketname/*"
      ],
      "Sid": ""
    }
  ]
}
EOF

mc admin policies add myminio getonly getonly.json

Create a new user newuser on Minio use mc admin users, additionally specify getonly canned policy for this newuser.

mc admin users add myminio newuser newuser123 getonly

3. Revoke user

Temporarily revoke access for newuser.

mc admin users revoke myminio newuser

4. Remove user

Remove the user newuser.

mc admin users remove myminio newuser