cloud-aws plugin: Option to explicitly set x-amz-acl: Private #14103
Labels
:Distributed/Snapshot/Restore
Anything directly related to the `_snapshot/*` APIs
>enhancement
help wanted
adoptme
v2.1.0
v2.2.0
v5.0.0-alpha1
While ACL Private is a default, it would be nice to permit ElasticSearch nodes to explicitly set the desired ACL for the snapshots they create. This can then be validated by an S3 Bucket Policy, which can reject clients that try to upload objects to S3 that aren't set as Private.
http://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
http://docs.aws.amazon.com/AmazonS3/latest/dev/using-iam-policies.html
The text was updated successfully, but these errors were encountered: