rich7420 commented on code in PR #290: URL: https://github.com/apache/ozone-site/pull/290#discussion_r2745194430
########## docs/03-core-concepts/03-namespace/02-buckets/02-owners.md: ########## @@ -4,4 +4,113 @@ sidebar_label: Owners # Bucket Owners -**TODO:** File a subtask under [HDDS-9857](https://issues.apache.org/jira/browse/HDDS-9857) and complete this page or section. +## 1. Overview + +Every bucket in Ozone has an **owner** property that identifies the user who owns the bucket. A bucket has a single owner. The bucket owner plays a role in access control and property management, particularly when using Ozone's native ACL authorization. + +## 2. Setting the Bucket Owner + +### During Bucket Creation + +When creating a bucket, the owner can be explicitly specified using the `--user` or `-u` command-line option: + +```bash +ozone sh bucket create /myvolume/mybucket --user alice +``` + +If the owner is not specified during creation, the owner defaults based on the authentication method: + +- **S3 Authentication:** Owner defaults to the short username derived from the S3 access ID. +- **Standard Authentication:** Owner defaults to the current user's short username (`UserGroupInformation.getCurrentUser().getShortUserName()`). + +**Example:** + +```bash +# Create bucket without specifying owner (defaults to current user) +$ ozone sh bucket create /myvol1/buck1 +$ ozone sh bucket info /myvol1/buck1 +{ + "volumeName" : "myvol1", + "name" : "buck1", + "owner" : "om", + ... +} +``` + +### Changing Bucket Ownership + +The bucket owner can be changed after creation using the bucket update command: + +```bash +ozone sh bucket update <volume>/<bucket> --user <new_owner> +``` + +Or using the short form: + +```bash +ozone sh bucket update <volume>/<bucket> -u <new_owner> +``` + +**Example:** + +```bash +$ ozone sh bucket update /myvol1/buck1 --user bob +{ + "volumeName" : "myvol1", + "name" : "buck1", + "owner" : "bob", + "modificationTime" : "2026-01-25T16:06:38.516Z", + ... +} +``` + +**Requirements for Changing Ownership:** + +- **Permissions:** The user attempting to change ownership must have `WRITE_ACL` permission on the bucket. This ensures that only authorized users can transfer ownership. Review Comment: ```suggestion - **Permissions:** When Ozone ACL is enabled, the user attempting to change ownership must have `WRITE_ACL` permission on the bucket. This ensures that only authorized users can transfer ownership. ``` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
