Hi all
I tried to deploy a cluster with 0.72 ,the S3 api of ceph(0.72v) about user's
permission confused me .
this the user's info :
{ "user_id": "johndoe",
"display_name": "John Doe",
"email": "",
"suspended": 0,
"max_buckets": 1000,
"auid": 0,
"subusers": [],
"keys": [
{ "user": "johndoe",
"access_key": "PMC2FNSMNFC18B5360EC",
"secret_key": "m9\/D+Ei5XDY+uGAueYaluXfapgQicOTcUZiwlvo3"}],
"swift_keys": [],
"caps": [
{ "type": "usage",
"perm": "*"},
{ "type": "user",
"perm": "*"}],
"op_mask": "read, write, delete",
"default_placement": "",
"placement_tags": [],
"bucket_quota": { "enabled": false,
"max_size_kb": -1,
"max_objects": -1}}
but when i using s3 api to create bucket with the user.
Traceback (most recent call last):
File "sss.py", line 13, in <module>
conn.create_bucket('my_bucket')
File
"/usr/local/lib/python2.7/dist-packages/boto-2.13.3-py2.7.egg/boto/s3/connection.py",
line 504, in create_bucket
response.status, response.reason, body)
boto.exception.S3ResponseError: S3ResponseError: 403 Forbidden
<?xml version="1.0" encoding="UTF-8"?><Error><Code>AccessDenied</Code></Error>
on the radosgw we get the info:
2013-11-05 15:14:17.281833 7fa14afa5700 1 ====== starting new request
req=0x2050f40 =====
2013-11-05 15:14:17.284046 7fa14afa5700 1 ====== req done req=0x2050f40
http_status=403 ======
the .conf file about the gateway is :
host = ceph-rgw40
keyring = /etc/ceph/keyring.radosgw.gateway
rgw socket path = /tmp/radosgw.sock
log file = /var/log/ceph/radosgw.log
rgw dns name =ceph-osd26
rgw print continue =false
the rgw.conf is :
FastCgiExternalServer /var/www/s3gw.fcgi -socket /tmp/radosgw.sock
<VirtualHost *:80>
ServerName cephcom.com
#<!--Remove the comment. Add a server alias with *.{fqdn} for S3 subdomains-->
#<!--ServerAlias *.{fqdn}-->
#ServerAdmin {email.address}
DocumentRoot /var/www
RewriteEngine On
RewriteRule ^/(.*)
/s3gw.fcgi?%{QUERY_STRING}[E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
<IfModule mod_fastcgi.c>
<Directory /var/www>
Options +ExecCGI
AllowOverride All
SetHandler fastcgi-script
Order allow,deny
Allow from all
AuthBasicAuthoritative Off
</Directory>
</IfModule>
AllowEncodedSlashes On
ErrorLog /var/log/apache2/error.log
CustomLog /var/log/apache2/access.log combined
ServerSignature Off
</VirtualHost>
and dns server seems ok ,when i ping the domain name "cephcom.com":
ping cephcom.com
PING cephcom.com (192.168.50.92) 56(84) bytes of data.
64 bytes from ceph-rgw40 (192.168.50.92): icmp_req=1 ttl=64 time=0.115 ms
64 bytes from ceph-rgw40 (192.168.50.92): icmp_req=2 ttl=64 time=0.084 ms
thank for any help !
lixuehui_______________________________________________
ceph-users mailing list
[email protected]
http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com
