(ozone-site) branch HDDS-9225-website-v2 updated: HDDS-14315. [Website v2] [Docs] [User Guide] o3: Ozone Shell (#187)

Wed, 31 Dec 2025 12:03:41 -0800 

This is an automated email from the ASF dual-hosted git repository.

weichiu pushed a commit to branch HDDS-9225-website-v2
in repository https://gitbox.apache.org/repos/asf/ozone-site.git


The following commit(s) were added to refs/heads/HDDS-9225-website-v2 by this 
push:
     new f47b7cdf2 HDDS-14315. [Website v2] [Docs] [User Guide] o3: Ozone Shell 
(#187)
f47b7cdf2 is described below

commit f47b7cdf2441a91ec0b624106d262ee1951d0c2c
Author: Eric C. Ho <[email protected]>
AuthorDate: Thu Jan 1 04:03:32 2026 +0800

    HDDS-14315. [Website v2] [Docs] [User Guide] o3: Ozone Shell (#187)
    
    Co-authored-by: Wei-Chiu Chuang <[email protected]>
---
 docs/04-user-guide/01-client-interfaces/01-o3.md | 300 ++++++++++++++++++++++-
 1 file changed, 297 insertions(+), 3 deletions(-)

diff --git a/docs/04-user-guide/01-client-interfaces/01-o3.md 
b/docs/04-user-guide/01-client-interfaces/01-o3.md
index b7dbae5f3..6154b8008 100644
--- a/docs/04-user-guide/01-client-interfaces/01-o3.md
+++ b/docs/04-user-guide/01-client-interfaces/01-o3.md
@@ -1,7 +1,301 @@
 ---
-sidebar_label: o3 (Ozone Shell)
+sidebar_label: Ozone Shell
 ---
 
-# o3: Ozone Shell
+# Ozone Shell (`ozone sh`)
 
-**TODO:** File a subtask under 
[HDDS-9858](https://issues.apache.org/jira/browse/HDDS-9858) and complete this 
page or section.
+Ozone shell is the primary interface to interact with Ozone from the command 
line. Behind the scenes it uses the [Java API](./06-java-client-api.md).
+
+There are some functionality which couldn't be accessed without using `ozone 
sh` commands. For example:
+
+1. Creating volumes with quota
+2. Managing internal ACLs
+3. Creating buckets with encryption key
+  
+All of these are one-time, administration tasks. Applications can use Ozone 
without this CLI using other interface like Hadoop Compatible File System (o3fs 
or ofs) or S3 interface.
+
+Ozone shell help can be invoked at *object* level or at *action* level.
+
+For example:
+
+```bash
+ozone sh volume --help
+```
+
+will show all possible actions for volumes.
+
+Or it can be invoked to explain a specific action like:
+
+```bash
+ozone sh volume create --help
+```
+
+which will print the command line options of the `create` command for volumes.
+
+## General Command Format
+
+Ozone shell commands take the following form:
+
+> *ozone sh object action url*
+
+**ozone** script is used to invoke all Ozone sub-commands. The Ozone shell is
+invoked via `sh` command.
+
+Object can be volume, bucket or key. Actions are various verbs like
+create, list, delete etc.
+
+Depending on the action, Ozone URL can point to a volume, bucket or key in the 
following format:
+
+```text
+[schema][server:port]/volume/bucket/key
+```
+
+Where,
+
+1. **Schema** - This should be `o3` which is the native RPC protocol to access
+  Ozone API. The usage of the schema is optional.
+
+2. **Server:Port** - This is the address of the Ozone Manager. If the port is
+omitted the default port from `ozone-site.xml` will be used.
+
+Please see volume commands, bucket commands, and key commands section for more
+detail.
+
+## Volume operations
+
+Volume is the top level element of the hierarchy, managed only by 
administrators. Optionally, quota and the owner user can be specified.
+
+Example commands:
+
+```shell
+ozone sh volume create /vol1
+```
+
+```shell
+$ ozone sh volume info /vol1
+{
+  "metadata" : { },
+  "name" : "vol1",
+  "admin" : "hadoop",
+  "owner" : "hadoop",
+  "creationTime" : "2020-07-28T12:31:50.112Z",
+  "modificationTime" : "2020-07-28T12:31:50.112Z",
+  "acls" : [ {
+    "type" : "USER",
+    "name" : "hadoop",
+    "aclScope" : "ACCESS",
+    "aclList" : [ "ALL" ]
+  }, {
+    "type" : "GROUP",
+    "name" : "users",
+    "aclScope" : "ACCESS",
+    "aclList" : [ "ALL" ]
+  } ],
+  "quota" : 1152921504606846976
+}
+```
+
+```shell
+$ ozone sh volume list /
+[ {
+  "metadata" : { },
+  "name" : "s3v",
+  "admin" : "hadoop",
+  "owner" : "hadoop",
+  "creationTime" : "2020-07-27T11:32:22.314Z",
+  "modificationTime" : "2020-07-27T11:32:22.314Z",
+  "acls" : [ {
+    "type" : "USER",
+    "name" : "hadoop",
+    "aclScope" : "ACCESS",
+    "aclList" : [ "ALL" ]
+  }, {
+    "type" : "GROUP",
+    "name" : "users",
+    "aclScope" : "ACCESS",
+    "aclList" : [ "ALL" ]
+  } ],
+  "quota" : 1152921504606846976
+}, {
+  ....
+} ]
+```
+
+If the volume is empty, we can delete the volume using the command below.
+
+```shell
+$ ozone sh volume delete /vol1
+Volume vol1 is deleted
+```
+
+If the volume contains any buckets or keys, we can delete the volume 
recursively. This will delete all keys and buckets within the volume, and then 
delete the volume itself.
+After running this command there is no way to recover deleted contents.
+
+```shell
+$ ozone sh volume delete -r /vol1
+This command will delete volume recursively.
+There is no recovery option after using this command, and no trash for FSO 
buckets.
+Delay is expected running this command.
+Enter 'yes' to proceed': yes
+Volume vol1 is deleted
+```
+
+## Bucket operations
+
+Bucket is the second level of the object hierarchy, and is similar to AWS S3 
buckets. Users can create buckets in volumes, if they have the necessary 
permissions.
+
+Command examples:
+
+```shell
+ozone sh bucket create /vol1/bucket1
+```
+
+```shell
+$ ozone sh bucket info /vol1/bucket1
+{
+  "metadata" : { },
+  "volumeName" : "vol1",
+  "name" : "bucket1",
+  "storageType" : "DISK",
+  "versioning" : false,
+  "creationTime" : "2020-07-28T13:14:45.091Z",
+  "modificationTime" : "2020-07-28T13:14:45.091Z",
+  "encryptionKeyName" : null,
+  "sourceVolume" : null,
+  "sourceBucket" : null
+}
+```
+
+If the bucket is empty we can delete the bucket using the command below.
+
+```shell
+$ ozone sh bucket delete /vol1/bucket1
+Bucket bucket1 is deleted
+```
+
+If the bucket contains any keys, we can delete the bucket recursively. This 
will delete all the keys within the bucket, and then the bucket itself.
+After running this command there is no way to recover deleted contents.
+
+```shell
+$ ozone sh bucket delete -r /vol1/bucket1
+This command will delete bucket recursively.
+There is no recovery option after using this command, and deleted keys won't 
move to trash.
+Enter 'yes' to proceed': yes
+Bucket bucket1 is deleted
+```
+
+[Transparent Data 
Encryption](../../05-administrator-guide/02-configuration/03-security/05-encryption/02-transparent-data-encryption.md)
 can be enabled at the bucket level.
+
+## Key operations
+
+Key is the object which can store the data.
+
+```shell
+ozone sh key put /vol1/bucket1/README.md README.md
+```
+
+:::warning
+In this case the standard `ozone sh <object_type> <action> <url>` scheme may 
be a bit confusing at first, as it results in the syntax `ozone sh key put 
<destination> <source>` instead of the arguably more natural order of `<source> 
<destination>`.
+:::
+
+```shell
+$ ozone sh key info /vol1/bucket1/README.md
+{
+  "volumeName" : "vol1",
+  "bucketName" : "bucket1",
+  "name" : "README.md",
+  "dataSize" : 3841,
+  "creationTime" : "2020-07-28T13:17:20.749Z",
+  "modificationTime" : "2020-07-28T13:17:21.979Z",
+  "replicationType" : "RATIS",
+  "replicationFactor" : 1,
+  "ozoneKeyLocations" : [ {
+    "containerID" : 1,
+    "localID" : 104591670688743424,
+    "length" : 3841,
+    "offset" : 0
+  } ],
+  "metadata" : { },
+  "fileEncryptionInfo" : null
+}
+```
+
+```shell
+ozone sh key get /vol1/bucket1/README.md /tmp/
+```
+
+```shell
+ozone sh key delete /vol1/bucket1/key1
+```
+
+If the key is in an 
[FSO](../../07-system-internals/07-features/01-filesystem-optimization.md) 
bucket it will be moved to the trash when deleted. Below is the trash location:
+
+```shell
+/<volume>/<bucket>/.Trash/<user>
+```
+
+If the key is in an OBS bucket it will be permanently deleted.
+
+## Querying CLI Results
+
+Ozone CLI returns JSON responses. [jq](https://stedolan.github.io/jq/manual/) 
is a command line JSON processor that can be used to filter CLI output for 
desired information.
+
+For example:
+
+- List FSO buckets that are not links.
+
+```shell
+$ ozone sh bucket list /s3v | jq '.[] | select(.link==false and 
.bucketLayout=="FILE_SYSTEM_OPTIMIZED")'
+{
+  "metadata": {},
+  "volumeName": "s3v",
+  "name": "fso-bucket",
+  "storageType": "DISK",
+  "versioning": false,
+  "usedBytes": 0,
+  "usedNamespace": 0,
+  "creationTime": "2023-02-01T05:18:46.974Z",
+  "modificationTime": "2023-02-01T05:18:46.974Z",
+  "quotaInBytes": -1,
+  "quotaInNamespace": -1,
+  "bucketLayout": "FILE_SYSTEM_OPTIMIZED",
+  "owner": "om",
+  "link": false
+}
+```
+
+- List EC buckets with their replication config.
+
+```shell
+$ ozone sh bucket list /vol1 | jq -r '.[] | 
select(.replicationConfig.replicationType == "EC") | {"name": .name, 
"replicationConfig": .replicationConfig}'
+{
+  "name": "ec5",
+  "replicationConfig": {
+    "data": 3,
+    "parity": 2,
+    "ecChunkSize": 1048576,
+    "codec": "RS",
+    "replicationType": "EC",
+    "requiredNodes": 5
+  }
+}
+{
+  "name": "ec9",
+  "replicationConfig": {
+    "data": 6,
+    "parity": 3,
+    "ecChunkSize": 1048576,
+    "codec": "RS",
+    "replicationType": "EC",
+    "requiredNodes": 9
+  }
+}
+```
+
+- List names of encrypted buckets and their encryption key names in 
tab-separated-value format.
+
+```shell
+$ ozone sh bucket list /vol1 | jq -r '.[] | select(.encryptionKeyName != null) 
| [.name, .encryptionKeyName] | @tsv'
+ec5     key1
+encrypted-bucket        key1
+```


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to