Bug 1879581

Summary: [RFE] mgr/volumes: get the list of auth IDs that have been granted access to a subvolume using mgr/volumes CLI
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Victoria Martinez de la Cruz <vimartin>
Component: CephFSAssignee: Kotresh HR <khiremat>
Status: CLOSED ERRATA QA Contact: Yogesh Mane <ymane>
Severity: high Docs Contact: Aron Gunn <agunn>
Priority: high    
Version: 4.2CC: agunn, anharris, ceph-eng-bugs, gfidente, gouthamr, hyelloji, khiremat, pdonnell, rmandyam, sostapov, sweil, tserlin, vereddy
Target Milestone: ---Keywords: FutureFeature
Target Release: 4.2z3   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: ceph-14.2.11-196.el8cp, ceph-14.2.11-196.el7cp Doc Type: Enhancement
Doc Text:
.The mgr/volumes CLI can now be used to list cephx auth IDs Earlier, `ceph_volume_client` interface was used to list the cephx auth IDs. This interface is now deprecated. With this release, consumers like Manila can use the mgr/volume interface to list the cephx auth IDs that are granted access to the subvolumes. .Syntax ---- ceph fs subvolume authorized_list _VOLUME_NAME_ _SUB_VOLUME_NAME_ [--group_name=_GROUP_NAME_] ----
 Story Points: ---
Clone Of: Environment:
Last Closed: 2021-09-27 18:26:22 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1760354, 1890121    

Description Victoria Martinez de la Cruz 2020-09-16 14:44:46 UTC 
Some cephfs users need the list of auth IDs that have been granted access to a share/subvolume. An example of this is openstack manila, see https://github.com/openstack/manila/blob/stable/train/manila/share/drivers/cephfs/driver.py#L456

The ceph_volume_client's get_authorized_ids() provides this functionality. https://github.com/ceph/ceph/blob/octopus/src/pybind/ceph_volume_client.py#L1308
The ceph_volume_client stores the auth IDs that have been given access to a subvolume in special metadata files, and fetches the list of auth IDs when requested. mgr/volumes needs to provide the same functionality. It needs to store and fetch auth IDs in the same special metadata files used by the ceph_volume_client.
Comment 2 Hemanth Kumar 2020-10-06 09:28:56 UTC 
Do we have any update on this? Can we expect the fix to be part of 4.2 ?
Comment 14 Patrick Donnelly 2021-08-23 23:47:08 UTC 
POST once merged.
Comment 25 errata-xmlrpc 2021-09-27 18:26:22 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 4.2 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:3670