Ceph Object Storage is an open source object store with the ability to scale to thousands of storage nodes and provides S3 compatible APIs via Reliable Autonomic Distributed Object Store (RADOS) gateway the Ceph Object Gateway daemon (radosgw
).
RADOS Gateway has its own user management. To use LucidLink you require S3 APIs, the user needs a key pair which is composed of an access-key and a secret-key.
Once you have successfully added radosgw to your Ceph Object Storage it is extremely simple to administer S3 access to initialize your Filespace.
Create a user:
radosgw-admin user create --uid=lucidlink --display-name="LucidLink" --email=filespace@lucidlink.com
{ "user_id": "lucidlink", "display_name": "LucidLink", "email": "filespace@lucidlink.com", "suspended": 0, "max_buckets": 1000, "subusers": [], "keys": [ { "user": "lucidlink", "access_key": "GD9374T9U6AEHFD69ECY", "secret_key": "rfagILlwUa9rDsX1dC0gWoTHtMRjGMQD2HeMCBOb" } ], "swift_keys": [], "caps": [], "op_mask": "read, write, delete", "default_placement": "", "default_storage_class": "", "placement_tags": [], "bucket_quota": { "enabled": false, "check_on_raw": false, "max_size": -1, "max_size_kb": 0, "max_objects": -1 }, "user_quota": { "enabled": false, "check_on_raw": false, "max_size": -1, "max_size_kb": 0, "max_objects": -1 }, "temp_url_keys": [], "type": "rgw", "mfa_ids": [] }
Your access-key and secret-key are displayed in the create user output. Store these in a secure location, you can list these at any time with the user info option.
Please follow our Getting Started Guide to create a Filespace selecting "Other Cloud" to provide your Ceph object storage cluster URL http://endpoint:port
If you wish to specify additional options you can initialize manually with our command line, please consult our Command line Filespace initialization KB for guidance.
Common Ceph Object Storage user administration commands are compiled below, as well as their usage in user, key and typical management operations. More detailed information is available through the Users Admin Guide.
List users:
radosgw-admin user list
Display user information:
radosgw-admin user info --uid=<user>
Create an additional user S3 key:
radosgw-admin key create --uid=lucidlink --key-type=s3 --access-key <access-key> --secret-key <secret-key>
note: you may create multiple S3 key pairs for a user. you may also create multiple subusers and S3 key pairs.
Remove a key:
radosgw-admin key rm --uid=lucidlink --key-type=s3 --access-key <access-key>
Suspend a user:
radosgw-admin user suspend --uid=lucidlink
Re-enable a user:
radosgw-admin user enable --uid=lucidlink
Remove a user:
radosgw-admin user rm --uid=lucidlink
user rm --uid=<user> --purge-keys
option purges user and all keys associated to the UID.
Create a user subuser:
radosgw-admin subuser create --uid=lucidlink --subuser=lucidlink:app --access=full
--access=[ read | write | readwrite | full ]
Create a subuser S3 key:
radosgw-admin key create --subuser=lucidlink:app --key-type=s3 --access-key <access-key> --secret-key <secret-key>
Remove a subuser S3 key:
radosgw-admin key rm --subuser=lucidlink:app --key-type=s3 --access-key=<access-key>
Remove a subuser:
radosgw-admin subuser rm --subuser=lucidlink:app
Monitor individual user or all users usage:
radosgw-admin usage show --uid=lucidlink --show-log-entries=false
radosgw-admin usage show --show-log-entries=false
note: --show-log-entries=false excludes object entries when used with Filespaces block layout
include: usage show --uid=<user> --start-date=<yyyy-mmm-dd> --end-date=<yyyy-mmm-dd>