Jetstream Object store permissions? #5161
Unanswered
moo-im-a-cow
asked this question in
Q&A
Replies: 2 comments 1 reply
-
Looking at this: nats-server/server/jetstream_api.go Line 338 in 9fa359a It seems we have to use $OBJ in stead of $KV. |
Beta Was this translation helpful? Give feedback.
0 replies
-
Object Store uses the prefix To see check what subjects are used for what, see the ADR: https://github.com/nats-io/nats-architecture-and-design/blob/main/adr/ADR-20.md Unfortunately, right now the permissions are possible only down to per-bucket level. Working with |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi.
How do i configure jetstream permissions? i cant find any documentation on this
specifically i need:
disable/enable listing object stores
disable/enable listing files stored in an object store
disable/enable reading files stored in an object store (is it possible to do per file, or just per store?)
disable/enable writing/deleting files stored in an object store (is it possible to do per file, or just per store?)
disable/enable creating / deleting object stores
basically what i want to do is make userA have read/list access to a specific object store, and userB have read/write/list access to that object store. neither user should be able to create, list or delete object stores (and no access to any other features of jetstream)
so far i've worked out that
$JS.>
gives full access to object stores and other parts of jetstream, but i have no clue what the layout for the rest of it is.I found info for jetstream KV, #4639, but cant find anything for objectstores
thanks.
Beta Was this translation helpful? Give feedback.
All reactions