[
https://issues.apache.org/jira/browse/RANGER-1300?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17901735#comment-17901735
]
Bhavik Patel commented on RANGER-1300:
--------------------------------------
Hi All,
I have attached the demo patch to support/manage S3 bucket policies through
Ranger Admin. The service definition file is slightly different from what
Madhan previously uploaded. We can update the service definition and
implementation based on our discussion.
h3. What the attached patch will do:
# *S3 service will be shown on Ranger Admin web UI and will take the following
inputs:*
** *End Point:* {{S3HOST:9021}}
** *Access Key:* {{AAAAAAAAAAA}}
** *Secret Key:* {{BBBBBBBBBBB}}
** *End Point URL:* {{https://S3HOST.COM:9021}}
** *Namespace URN:* {{s3_np_001_ns}}
** *Region:* {{US_EAST_1}}
** *Bucket Name:* {{s3-dev}}
# *Test Connection*
** Will only check Access Key, Secret Key, and End Point URL.
** As of now, it does not depend on the bucket name.
# *Bucket Name*
** Included as part of the service definition because each S3 bucket contains
only a list of "Statements".
** S3 doesn't allow CRUD operations on delta changes, so we have to override
the full list of "Statements".
# *Policy Types Supported*
** Both "Allow" and "Deny" policy types are supported.
** "Exclude from Allow Conditions" and "Exclude from Deny Conditions" are not
supported.
> S3 support
> ----------
>
> Key: RANGER-1300
> URL: https://issues.apache.org/jira/browse/RANGER-1300
> Project: Ranger
> Issue Type: New Feature
> Components: plugins
> Reporter: Jose
> Priority: Major
> Attachments: 0001-RANGER-1300-S3-bucket-policy-support.patch,
> ranger-servicedef-aws-s3.json
>
>
> As more and more people are deploying hadoop into AWS and as S3 is used in
> lots of application. It'd be nice to have S3 support built into Ranger.
> It's not a trivial task. Right now Ranger Storage support (only hdfs) runs
> directly in the Namenode
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
