Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE REQUEST] onboard bucket via onyxia-operator #222

Open
2 tasks
fcomte opened this issue Apr 25, 2023 · 1 comment
Open
2 tasks

[FEATURE REQUEST] onboard bucket via onyxia-operator #222

fcomte opened this issue Apr 25, 2023 · 1 comment
Assignees
@olevitt @fcomte

Comments

@fcomte
Copy link
Contributor

fcomte commented Apr 25, 2023

OnyxiaAPI should allow a configuration where S3 bucket with quota is provided by onyxia-operator :
As a first step we can start with :

  • add a regional option for that
  • generate CRD in a new API endpoint

We should take care about security issues.
At the moment there is no admin account of the object storage in Onyxia but the operator will.
So we need to be sure that the created bucket belong to the user.

In a second step we could implement policy generation. This will be done in another FR.
@fcomte
Copy link
Contributor Author

fcomte commented Apr 25, 2023

There is three options for onboarding :

  • none , which means that the process of creation bucket is out of the scope of Onyxia
  • user, which means that the STS account of the user create the bucket ( directly in the onyxia-web for minio or via onyxia-api for aws S3 because of cors )
  • operator, which means that the new onyxia operator will create bucket and other S3 resources, based on CRD published by onyxia.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@olevitt olevitt

@fcomte fcomte

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@olevitt @fcomte