New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
mgr/dashboard: add server side encryption to rgw/s3 #47495
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Good WIP! Some notes on code and styling.
| 'SSEAlgorithm') | ||
| sse_algo_element.text = sseAlgorithm | ||
|
|
||
| if sseAlgorithm == 'aws:kms': |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Enum members are in UPPERCASE:
class SSEAlgorithms(Enum, str):
NO_ENCRYPTION = 'No Encryption'
AWS_KMS = 'aws:kms'| if sseAlgorithm == 'aws:kms': | |
| if sse_algorithm == SSEAlgorithms.AWS_KMS: |
0eda28a
to
442ba3b
Compare
|
@cbodley @mattbenjamin @mdw-at-linuxbox , In this PR we have introduced the functionality to set the rgw config values for kms encryption( |
|
does the dashboard allow you to enable/disable encryption policy on existing buckets, or is this just during bucket creation? i don't really like the idea of the dashboard overriding config variables this way. what if they're already set on some/all rgws? |
Thanks Casey, we can allow setting/disabling encryption on creation of a bucket and on existing buckets as well.
I think we can check if the config values are already set, then we can go forward with the default values and if they are not set we can allow the user to set them through dashboard. Shouldn't this be the case? |
...shboard/frontend/src/app/ceph/cluster/prometheus/silence-form/silence-form.component.spec.ts
Outdated
Show resolved
Hide resolved
src/pybind/mgr/dashboard/frontend/src/app/shared/api/rgw-bucket.service.ts
Outdated
Show resolved
Hide resolved
src/pybind/mgr/dashboard/frontend/src/app/shared/api/rgw-bucket.service.ts
Outdated
Show resolved
Hide resolved
|
This pull request can no longer be automatically merged: a rebase is needed and changes have to be manually resolved |
093f140
to
a088eaa
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
initial reviews
...ind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.html
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.ts
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.ts
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.ts
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.scss
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.scss
Outdated
Show resolved
Hide resolved
src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.ts
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.ts
Outdated
Show resolved
Hide resolved
e7321cf
to
8731591
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I saw an rgw-encryption file in the models which is empty. that should be removed too i guess
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.html
Outdated
Show resolved
Hide resolved
src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.ts
Outdated
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-bucket-form/rgw-bucket-form.component.html
Outdated
Show resolved
Hide resolved
src/pybind/mgr/dashboard/frontend/src/app/ceph/rgw/models/rgw-bucket-encryption.ts
Show resolved
Hide resolved
...ybind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.ts
Show resolved
Hide resolved
...ind/mgr/dashboard/frontend/src/app/ceph/rgw/rgw-config-modal/rgw-config-modal.component.html
Outdated
Show resolved
Hide resolved
8731591
to
52f7b23
Compare
|
jenkins test dashboard cephadm |
|
jenkins test api |
1 similar comment
|
jenkins test api |
|
jenkins test dashboard |
|
jenkins test make check |
1 similar comment
|
jenkins test make check |
|
jenkins test api |
b79adca
to
67d3b60
Compare
|
jenkins test dashboard |
|
jenkins test make check arm64 |
1 similar comment
|
jenkins test make check arm64 |
|
@cbodley, I have updated the PR as per your comments, If you can please re-check that would be great. Thanks in advance. |
|
jenkins test dashboard cephadm |
67d3b60
to
65195d2
Compare
|
jenkins test make check |
|
jenkins test dashboard cephadm |
|
jenkins test dashboard |
Fixes:https://tracker.ceph.com/issues/57826 Signed-off-by: Aashish Sharma <aasharma@redhat.com>
65195d2
to
42aa228
Compare
Fixes: https://tracker.ceph.com/issues/57826
Signed-off-by: Aashish Sharma aasharma@redhat.com
Contribution Guidelines
To sign and title your commits, please refer to Submitting Patches to Ceph.
If you are submitting a fix for a stable branch (e.g. "pacific"), please refer to Submitting Patches to Ceph - Backports for the proper workflow.
Checklist
Show available Jenkins commands
jenkins retest this pleasejenkins test classic perfjenkins test crimson perfjenkins test signedjenkins test make checkjenkins test make check arm64jenkins test submodulesjenkins test dashboardjenkins test dashboard cephadmjenkins test apijenkins test docsjenkins render docsjenkins test ceph-volume alljenkins test ceph-volume toxjenkins test windows