per-bucket keys #68

Merged

quentin merged 9 commits from feat-per-bucket-key into main

2024-06-24 10:15:56 +00:00

quentin commented

2024-06-24 05:53:50 +00:00

Owner

WebUI

similar to API, check API

API

Global access + secret key is not returned anymore (no more access_key_id or secret_access_key fields):

$ curl --user quentin http://localhost:9991/api/unstable/website|jq

{
  "quota_website_count": {
    "current": 2,
    "max": 5,
    "ratio": 0.4,
    "burstable": true
  },
  "burst_bucket_quota_size": "200 Mio",
  "vhosts": [
    {
      "name": "patapon",
      "alt_name": [],
      "expanded": false,
      "domain": "patapon.web.deuxfleurs.fr"
    },
    {
      "name": "plop",
      "alt_name": [],
      "expanded": false,
      "domain": "plop.web.deuxfleurs.fr"
    }
  ]
}

Each website now has its dedicated access key id + secret key (note the access_key_id and secret_access_key fields):

curl --user quentin http://localhost:9991/api/unstable/website/plop|jq

{
  "vhost": {
    "name": "plop",
    "alt_name": [],
    "expanded": false,
    "domain": "plop.web.deuxfleurs.fr"
  },
  "access_key_id": "GK1ecf79b50f2e3acd55f4b031",
  "secret_access_key": "273762376ea2c5d8a619029f09c09ce96e2ef03fe3dbdd7f44bfb68551ed7de2",
  "quota_size": {
    "current": 0,
    "max": 52428800,
    "ratio": 0,
    "burstable": true
  },
  "quota_files": {
    "current": 0,
    "max": 10000,
    "ratio": 0,
    "burstable": false
  }
}

Rotating key is possible through a PATCH call (note how in the answer the access_key_id and `secret_access_key fields changed):

$ curl --user quentin -X PATCH --data '{ "rotate_key": true }' http://localhost:9991/api/unstable/website/plop|jq

{
  "vhost": {
    "name": "plop",
    "alt_name": [],
    "expanded": false,
    "domain": "plop.web.deuxfleurs.fr"
  },
  "access_key_id": "GKce95b4a033c4de0950960f7f",
  "secret_access_key": "cb9a730fc4c5c823ed9e200036973baac28d0b7d24359aec3126a671e9ff82b3",
  "quota_size": {
    "current": 0,
    "max": 52428800,
    "ratio": 0,
    "burstable": true
  },
  "quota_files": {
    "current": 0,
    "max": 10000,
    "ratio": 0,
    "burstable": false
  }
}

## WebUI similar to API, check API ## API Global access + secret key is not returned anymore (no more `access_key_id` or `secret_access_key` fields): ```bash $ curl --user quentin http://localhost:9991/api/unstable/website|jq ``` ```json { "quota_website_count": { "current": 2, "max": 5, "ratio": 0.4, "burstable": true }, "burst_bucket_quota_size": "200 Mio", "vhosts": [ { "name": "patapon", "alt_name": [], "expanded": false, "domain": "patapon.web.deuxfleurs.fr" }, { "name": "plop", "alt_name": [], "expanded": false, "domain": "plop.web.deuxfleurs.fr" } ] } ``` Each website now has its dedicated access key id + secret key (note the `access_key_id` and `secret_access_key` fields): ``` curl --user quentin http://localhost:9991/api/unstable/website/plop|jq ``` ```json { "vhost": { "name": "plop", "alt_name": [], "expanded": false, "domain": "plop.web.deuxfleurs.fr" }, "access_key_id": "GK1ecf79b50f2e3acd55f4b031", "secret_access_key": "273762376ea2c5d8a619029f09c09ce96e2ef03fe3dbdd7f44bfb68551ed7de2", "quota_size": { "current": 0, "max": 52428800, "ratio": 0, "burstable": true }, "quota_files": { "current": 0, "max": 10000, "ratio": 0, "burstable": false } } ``` Rotating key is possible through a PATCH call (note how in the answer the `access_key_id` and `secret_access_key fields changed): ```bash $ curl --user quentin -X PATCH --data '{ "rotate_key": true }' http://localhost:9991/api/unstable/website/plop|jq ``` ```json { "vhost": { "name": "plop", "alt_name": [], "expanded": false, "domain": "plop.web.deuxfleurs.fr" }, "access_key_id": "GKce95b4a033c4de0950960f7f", "secret_access_key": "cb9a730fc4c5c823ed9e200036973baac28d0b7d24359aec3126a671e9ff82b3", "quota_size": { "current": 0, "max": 52428800, "ratio": 0, "burstable": true }, "quota_files": { "current": 0, "max": 10000, "ratio": 0, "burstable": false } } ```

quentin added 1 commit 2024-06-24 05:53:51 +00:00