minio/docs
1
0
Fork 0
mirror of https://github.com/minio/docs.git synced 2025-08-06 14:42:56 +03:00
Code Activity

Adding missed replication policy reference

Browse Source
This commit is contained in:
ravindk89
2021-07-15 13:53:12 -04:00
parent c1f582d4dd
commit 19ef29fd5d
1 changed files with 4 additions and 77 deletions
Download Patch File Download Diff File Expand all files Collapse all files

81
source/replication/enable-server-side-two-way-bucket-replication.rst
View File

@@ -108,39 +108,9 @@ destination clusters to configure and enable replication rules.
The following policy provides permissions for configuring and enabling The following policy provides permissions for configuring and enabling
replication on a cluster. replication on a cluster.
.. code-block:: shell .. literalinclude:: /extra/examples/ReplicationAdminPolicy.json
:class: copyable :class: copyable
:language: json
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"admin:SetBucketTarget",
"admin:GetBucketTarget"
],
"Effect": "Allow",
"Sid": "EnableRemoteBucketConfiguration"
},
{
"Effect": "Allow",
"Action": [
"s3:GetReplicationConfiguration",
"s3:ListBucket",
"s3:ListBucketMultipartUploads",
"s3:GetBucketLocation",
"s3:GetBucketVersioning",
"s3:GetObjectRetention",
"s3:GetObjectLegalHold",
"s3:PutReplicationConfiguration"
],
"Resource": [
"arn:aws:s3:::*"
],
"Sid": "EnableReplicationRuleConfiguration"
}
]
}
- The ``"EnableRemoteBucketConfiguration"`` statement grants permission - The ``"EnableRemoteBucketConfiguration"`` statement grants permission
for creating a remote target for supporting replication. for creating a remote target for supporting replication.
@@ -162,52 +132,9 @@ destination clusters to configure and enable replication rules.
replicated data *into* the cluster. Use the :mc-cmd:`mc admin policy add` replicated data *into* the cluster. Use the :mc-cmd:`mc admin policy add`
to add this policy to *both* clusters. to add this policy to *both* clusters.
.. code-block:: shell .. literalinclude:: /extra/examples/ReplicationRemoteUserPolicy.json
:class: copyable :class: copyable
:language: json
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:GetReplicationConfiguration",
"s3:ListBucket",
"s3:ListBucketMultipartUploads",
"s3:GetBucketLocation",
"s3:GetBucketVersioning",
"s3:GetBucketObjectLockConfiguration",
"s3:GetEncryptionConfiguration"
],
"Resource": [
"arn:aws:s3:::*"
],
"Sid": "EnableReplicationOnBucket"
},
{
"Effect": "Allow",
"Action": [
"s3:GetReplicationConfiguration",
"s3:ReplicateTags",
"s3:AbortMultipartUpload",
"s3:GetObject",
"s3:GetObjectVersion",
"s3:GetObjectVersionTagging",
"s3:PutObject",
"s3:PutObjectRetention",
"s3:PutBucketObjectLockConfiguration",
"s3:PutObjectLegalHold",
"s3:DeleteObject",
"s3:ReplicateObject",
"s3:ReplicateDelete"
],
"Resource": [
"arn:aws:s3:::*"
],
"Sid": "EnableReplicatingDataIntoBucket"
}
]
}
- The ``"EnableReplicationOnBucket"`` statement grants permission for - The ``"EnableReplicationOnBucket"`` statement grants permission for
a remote target to retrieve bucket-level configuration for supporting a remote target to retrieve bucket-level configuration for supporting