Search Options

Results per page
Sort
Preferred Languages
Advance

Results 21 - 30 of 100 for iam (0.3 sec)

  1. docs/iam/opa.md

    OPA is enabled through MinIO's Access Management Plugin feature.
    
    ## Get started
    
    ### 1. Start OPA in a container
    
    ```sh
    podman run -it \
        --name opa \
        --publish 8181:8181 \
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Jul 17 15:43:14 UTC 2022
    - 2.3K bytes
    - Viewed (0)
  2. docs/iam/policies/pbac-tests.sh

    pid=$!
    
    mc ready myminio
    
    mc admin user add myminio/ minio123 minio123
    
    mc admin policy create myminio/ deny-non-sse-kms-pol ./docs/iam/policies/deny-non-sse-kms-objects.json
    mc admin policy create myminio/ deny-invalid-sse-kms-pol ./docs/iam/policies/deny-objects-with-invalid-sse-kms-key-id.json
    
    mc admin policy attach myminio deny-non-sse-kms-pol --user minio123
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Jun 25 01:15:27 UTC 2024
    - 2.5K bytes
    - Viewed (0)
  3. cmd/warm-backend-s3.go

    		return nil, errors.New("no bucket name was provided")
    	}
    
    	// Credentials initialization
    	var creds *credentials.Credentials
    	switch {
    	case conf.AWSRole:
    		creds = credentials.New(&credentials.IAM{
    			Client: &http.Client{
    				Transport: NewHTTPTransport(),
    			},
    		})
    	case conf.AWSRoleWebIdentityTokenFile != "" && conf.AWSRoleARN != "":
    		sessionName := conf.AWSRoleSessionName
    		if sessionName == "" {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Oct 31 22:10:24 UTC 2024
    - 5.7K bytes
    - Viewed (0)
  4. cmd/logging.go

    	logger.LogOnceIf(ctx, "iam", err, id, errKind...)
    }
    
    func iamLogIf(ctx context.Context, err error, errKind ...interface{}) {
    	if !errors.Is(err, grid.ErrDisconnected) {
    		logger.LogIf(ctx, "iam", err, errKind...)
    	}
    }
    
    func iamLogEvent(ctx context.Context, msg string, args ...interface{}) {
    	logger.Event(ctx, "iam", msg, args...)
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jul 03 18:49:48 UTC 2024
    - 7.1K bytes
    - Viewed (0)
  5. docs/metrics/v3.md

    | `/cluster/config`        | Cluster configuration metrics. |
    | `/cluster/erasure-set`   | Erasure set metrics.           |
    | `/cluster/health`        | Cluster health metrics.        |
    | `/cluster/iam`           | Cluster iam metrics.           |
    | `/cluster/usage/buckets` | Object statistics by bucket.   |
    | `/cluster/usage/objects` | Object statistics.             |
    
    #### `/cluster/config`
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri Aug 02 22:30:11 UTC 2024
    - 45.2K bytes
    - Viewed (0)
  6. cmd/veeam-sos-api.go

    //   - Handover of IAM & STS Endpoints instead of manual definition in Veeam Backup & Replication. This allows Veeam
    //     Agents to directly backup to object storage.
    //
    // An object storage system can implement one, multiple, or all functions.
    //
    //   - Optional (mandatory if <IAMSTS> is true): Set Endpoints for IAM and STS processing.
    //
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Aug 15 00:34:56 UTC 2024
    - 8.8K bytes
    - Viewed (0)
  7. docs/hotfixes.md

    Date:   Sat Jun 15 11:27:17 2019 -0700
    
        [security] Match ${aws:username} exactly instead of prefix match (#7791)
    
        This PR fixes a security issue where an IAM user based
        on his policy is granted more privileges than restricted
        by the users IAM policy.
    
        This is due to an issue of prefix based Matcher() function
        which was incorrectly matching prefix based on resource
        prefixes instead of exact match.
    ```
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Feb 14 21:36:02 UTC 2024
    - 5K bytes
    - Viewed (0)
  8. docs/sts/custom-token-identity.md

    # AssumeRoleWithCustomToken [![Slack](https://slack.min.io/slack?type=svg)](https://slack.min.io)
    
    ## Introduction
    
    To integrate with custom authentication methods using the [Identity Management Plugin](../iam/identity-management-plugin.md)), MinIO provides an STS API extension called `AssumeRoleWithCustomToken`.
    
    After configuring the plugin, use the generated Role ARN with `AssumeRoleWithCustomToken` to get temporary credentials to access object storage.
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 27 00:58:09 UTC 2022
    - 3K bytes
    - Viewed (0)
  9. cmd/sts-datatypes.go

    	// The ARN of the temporary security credentials that are returned from the
    	// AssumeRole action. For more information about ARNs and how to use them in
    	// policies, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html)
    	// in Using IAM.
    	//
    	// Arn is a required field
    	Arn string
    
    	// A unique identifier that contains the role ID and the role session name of
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 27 00:58:09 UTC 2022
    - 9.9K bytes
    - Viewed (0)
  10. docs/metrics/prometheus/list.md

    | `minio_node_iam_sync_failures`             | Number of failed IAM data syncs since server start.         |
    | `minio_node_iam_sync_successes`            | Number of successful IAM data syncs since server start.     |
    
    ## Information Lifecycle Management (ILM) Metrics
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Mon Jul 29 18:48:51 UTC 2024
    - 43.3K bytes
    - Viewed (0)
Back to top